Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-2638 (GCVE-0-2018-2638)
Vulnerability from cvelistv5
Published
2018-01-18 02:00
Modified
2024-10-03 20:38
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE.
Summary
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Oracle Corporation | Java |
Version: Java SE: 8u152 Version: 9.0.1 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T04:21:34.416Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2018:0351",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"name": "RHSA-2018:0352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "RHSA-2018:0099",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"name": "RHSA-2018:1463",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"name": "1040203",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1040203"
},
{
"name": "102546",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/102546"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2018-2638",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-03T19:19:42.892899Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-03T20:38:40.248Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Java",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "Java SE: 8u152"
},
{
"status": "affected",
"version": "9.0.1"
}
]
}
],
"datePublic": "2018-01-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-11-30T20:57:01",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"name": "RHSA-2018:0351",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"name": "RHSA-2018:0352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "RHSA-2018:0099",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"name": "RHSA-2018:1463",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"name": "1040203",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1040203"
},
{
"name": "102546",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/102546"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2018-2638",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Java",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Java SE: 8u152"
},
{
"version_affected": "=",
"version_value": "9.0.1"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:0351",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20180117-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"name": "RHSA-2018:0352",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "RHSA-2018:0099",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"name": "RHSA-2018:1463",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"name": "1040203",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1040203"
},
{
"name": "102546",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/102546"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2018-2638",
"datePublished": "2018-01-18T02:00:00",
"dateReserved": "2017-12-15T00:00:00",
"dateUpdated": "2024-10-03T20:38:40.248Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2018-2638\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2018-01-18T02:29:20.850\",\"lastModified\":\"2024-11-21T04:04:07.590\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad en el componente Java SE de Oracle Java SE (subcomponente: Deployment). Las versiones compatibles que se han visto afectadas son JavaSE: 8u152 y 9.0.1. Una vulnerabilidad dif\u00edcilmente explotable permite que un atacante sin autenticar que tenga acceso a red por m\u00faltiples protocolos comprometa la seguridad de Java SE. Para que los ataques tengan \u00e9xito, se necesita la participaci\u00f3n de otra persona diferente del atacante y, aunque la vulnerabilidad est\u00e1 presente en Java SE, los ataques podr\u00edan afectar seriamente a productos adicionales. Los ataques exitosos a esta vulnerabilidad pueden resultar en la toma de control de Java SE. Nota: Esta vulnerabilidad se aplica a implementaciones Java, normalmente en clientes que ejecutan aplicaciones Java Web Start en sandbox o applets Java en sandbox que cargan y ejecutan c\u00f3digo que no es de confianza (por ejemplo, c\u00f3digo proveniente de internet) y que conf\u00edan en la sandbox de aislado Java para protegerse. Esta vulnerabilidad no se aplica a implementaciones Java, normalmente en servidores, que solo cargan y ejecutan c\u00f3digo de confianza (por ejemplo, c\u00f3digo instalado por un administrador). CVSS 3.0 Base Score 8.3 (impactos en la confidencialidad, integridad y disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:P/I:P/A:P\",\"baseScore\":5.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":4.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.8.0:update152:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2EB8815-20EE-4A0B-A001-73995114333D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:9.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"796F8150-771C-4806-83D7-72C5F539ED1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.8.0:update152:*:*:*:*:*:*\",\"matchCriteriaId\":\"1988C207-4D9F-4FD2-9652-30CB2C65FE8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:9.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76105155-2BDC-4A86-8DA4-4EC5362D5978\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4F86C3C-B99C-44C6-97D7-163DC3F59687\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CF73560-2F5B-4723-A8A1-9AADBB3ADA00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*\",\"versionStartIncluding\":\"7.3\",\"matchCriteriaId\":\"BD075607-09B7-493E-8611-66D041FFDA62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*\",\"versionStartIncluding\":\"9.5\",\"matchCriteriaId\":\"0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C2089EE-5D7F-47EC-8EA5-0F69790564C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_management_plug-ins:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20B49859-49F0-439B-AEF8-79EF71DA0D73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0\",\"versionEndIncluding\":\"11.70.1\",\"matchCriteriaId\":\"73F81EC3-4AB0-4CD7-B845-267C5974DE98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D9CC59D-6182-4B5E-96B5-226FCD343916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*\",\"matchCriteriaId\":\"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BD81527-A341-42C3-9AB9-880D3DB04B08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*\",\"matchCriteriaId\":\"3FA5E22C-489B-4C5F-A5F3-C03F45CA8811\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FFE0A9D2-9A49-4BF6-BC6F-8249162D8334\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB15BCF1-1B1D-49D8-9B76-46DCB10044DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*\",\"matchCriteriaId\":\"26A2B713-7D6D-420A-93A4-E0D983C983DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*\",\"matchCriteriaId\":\"64DE38C8-94F1-4860-B045-F33928F676A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:vmware_vsphere:*:*\",\"versionStartIncluding\":\"7.2\",\"matchCriteriaId\":\"6BF60DAD-DAA2-4543-B82E-8E17F7B1DA06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:*\",\"versionStartIncluding\":\"7.2\",\"matchCriteriaId\":\"1E35D95E-CCBF-4335-A4DB-02218BA172DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.0.4\",\"matchCriteriaId\":\"73019FE2-F7CE-4B12-9DC1-8333F08A7D9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.2\",\"matchCriteriaId\":\"13270F58-E106-48CE-9933-E68AABBBFC21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"923F6B82-6A8B-4994-89F6-C430775D5234\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vmware_vsphere:*:*\",\"versionStartIncluding\":\"7.2\",\"matchCriteriaId\":\"B7B42CB6-3C14-4183-AFA8-C3682F8B54AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2EAA5561-CA42-457A-B63E-96A79258758B\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/102546\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1040203\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0099\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0351\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0352\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1463\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180117-0001/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/102546\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1040203\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0099\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0351\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0352\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1463\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180117-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2018:0351\", \"name\": \"RHSA-2018:0351\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180117-0001/\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0352\", \"name\": \"RHSA-2018:0352\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0099\", \"name\": \"RHSA-2018:0099\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:1463\", \"name\": \"RHSA-2018:1463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"http://www.securitytracker.com/id/1040203\", \"name\": \"1040203\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\", \"x_transferred\"]}, {\"url\": \"http://www.securityfocus.com/bid/102546\", \"name\": \"102546\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-05T04:21:34.416Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2018-2638\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-03T19:19:42.892899Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-03T19:20:11.490Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Oracle Corporation\", \"product\": \"Java\", \"versions\": [{\"status\": \"affected\", \"version\": \"Java SE: 8u152\"}, {\"status\": \"affected\", \"version\": \"9.0.1\"}]}], \"datePublic\": \"2018-01-03T00:00:00\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2018:0351\", \"name\": \"RHSA-2018:0351\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180117-0001/\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0352\", \"name\": \"RHSA-2018:0352\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0099\", \"name\": \"RHSA-2018:0099\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:1463\", \"name\": \"RHSA-2018:1463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"http://www.securitytracker.com/id/1040203\", \"name\": \"1040203\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\"]}, {\"url\": \"http://www.securityfocus.com/bid/102546\", \"name\": \"102546\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE.\"}]}], \"providerMetadata\": {\"orgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"shortName\": \"oracle\", \"dateUpdated\": \"2018-11-30T20:57:01\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"Java SE: 8u152\", \"version_affected\": \"=\"}, {\"version_value\": \"9.0.1\", \"version_affected\": \"=\"}]}, \"product_name\": \"Java\"}]}, \"vendor_name\": \"Oracle Corporation\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2018:0351\", \"name\": \"RHSA-2018:0351\", \"refsource\": \"REDHAT\"}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\", \"name\": \"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180117-0001/\", \"name\": \"https://security.netapp.com/advisory/ntap-20180117-0001/\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0352\", \"name\": \"RHSA-2018:0352\", \"refsource\": \"REDHAT\"}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"name\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0099\", \"name\": \"RHSA-2018:0099\", \"refsource\": \"REDHAT\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:1463\", \"name\": \"RHSA-2018:1463\", \"refsource\": \"REDHAT\"}, {\"url\": \"http://www.securitytracker.com/id/1040203\", \"name\": \"1040203\", \"refsource\": \"SECTRACK\"}, {\"url\": \"http://www.securityfocus.com/bid/102546\", \"name\": \"102546\", \"refsource\": \"BID\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE.\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2018-2638\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"secalert_us@oracle.com\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2018-2638\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-03T20:38:40.248Z\", \"dateReserved\": \"2017-12-15T00:00:00\", \"assignerOrgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"datePublished\": \"2018-01-18T02:00:00\", \"assignerShortName\": \"oracle\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
rhsa-2018:0352
Vulnerability from csaf_redhat
Published
2018-02-26 21:37
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0352",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0352.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:47+00:00",
"generator": {
"date": "2025-10-10T02:10:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0352",
"initial_release_date": "2018-02-26T21:37:30+00:00",
"revision_history": [
{
"date": "2018-02-26T21:37:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:37:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
RHSA-2018:0352
Vulnerability from csaf_redhat
Published
2018-02-26 21:37
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0352",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0352.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:47+00:00",
"generator": {
"date": "2025-10-10T02:10:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0352",
"initial_release_date": "2018-02-26T21:37:30+00:00",
"revision_history": [
{
"date": "2018-02-26T21:37:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:37:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018_0099
Vulnerability from csaf_redhat
Published
2018-01-18 21:55
Modified
2024-11-15 02:06
Summary
Red Hat Security Advisory: java-1.8.0-oracle security update
Notes
Topic
An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
This update upgrades Oracle Java SE 8 to version 8 Update 161.
Security Fix(es):
* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.\n\nThis update upgrades Oracle Java SE 8 to version 8 Update 161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0099",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html",
"url": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0099.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-oracle security update",
"tracking": {
"current_release_date": "2024-11-15T02:06:17+00:00",
"generator": {
"date": "2024-11-15T02:06:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:0099",
"initial_release_date": "2018-01-18T21:55:29+00:00",
"revision_history": [
{
"date": "2018-01-18T21:55:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-01-18T21:55:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:06:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
}
],
"category": "product_family",
"name": "Oracle Java for Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
},
{
"cve": "CVE-2018-2783",
"discovery_date": "2018-04-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1569204"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2783"
},
{
"category": "external",
"summary": "RHBZ#1569204",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1569204"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2783",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2783"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA"
}
],
"release_date": "2018-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)"
}
]
}
RHSA-2018:1463
Vulnerability from csaf_redhat
Published
2018-05-15 15:30
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)
* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)
* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)
* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)
* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)
* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)
* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)
* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)
* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)
* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)
* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)
* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)
* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)
* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)
* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)
* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)
* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)
* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)\n\n* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)\n\n* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)\n\n* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)\n\n* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)\n\n* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)\n\n* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)\n\n* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)\n\n* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)\n\n* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)\n\n* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)\n\n* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)\n\n* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)\n\n* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)\n\n* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)\n\n* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)\n\n* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1463",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1463.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:53+00:00",
"generator": {
"date": "2025-10-10T02:10:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:1463",
"initial_release_date": "2018-05-15T15:30:51+00:00",
"revision_history": [
{
"date": "2018-05-15T15:30:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-05-15T15:30:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2657",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535353"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2657"
},
{
"category": "external",
"summary": "RHBZ#1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2657",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018_0351
Vulnerability from csaf_redhat
Published
2018-02-26 21:32
Modified
2024-11-15 02:06
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0351",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0351.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:06:48+00:00",
"generator": {
"date": "2024-11-15T02:06:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:0351",
"initial_release_date": "2018-02-26T21:32:17+00:00",
"revision_history": [
{
"date": "2018-02-26T21:32:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:32:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:06:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018:1463
Vulnerability from csaf_redhat
Published
2018-05-15 15:30
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)
* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)
* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)
* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)
* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)
* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)
* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)
* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)
* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)
* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)
* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)
* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)
* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)
* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)
* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)
* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)
* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)
* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)\n\n* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)\n\n* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)\n\n* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)\n\n* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)\n\n* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)\n\n* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)\n\n* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)\n\n* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)\n\n* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)\n\n* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)\n\n* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)\n\n* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)\n\n* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)\n\n* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)\n\n* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)\n\n* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1463",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1463.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:53+00:00",
"generator": {
"date": "2025-10-10T02:10:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:1463",
"initial_release_date": "2018-05-15T15:30:51+00:00",
"revision_history": [
{
"date": "2018-05-15T15:30:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-05-15T15:30:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2657",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535353"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2657"
},
{
"category": "external",
"summary": "RHBZ#1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2657",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
RHSA-2018:0351
Vulnerability from csaf_redhat
Published
2018-02-26 21:32
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0351",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0351.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:45+00:00",
"generator": {
"date": "2025-10-10T02:10:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0351",
"initial_release_date": "2018-02-26T21:32:17+00:00",
"revision_history": [
{
"date": "2018-02-26T21:32:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:32:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
RHSA-2018:0099
Vulnerability from csaf_redhat
Published
2018-01-18 21:55
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-oracle security update
Notes
Topic
An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
This update upgrades Oracle Java SE 8 to version 8 Update 161.
Security Fix(es):
* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.\n\nThis update upgrades Oracle Java SE 8 to version 8 Update 161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0099",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html",
"url": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0099.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-oracle security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:45+00:00",
"generator": {
"date": "2025-10-10T02:10:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0099",
"initial_release_date": "2018-01-18T21:55:29+00:00",
"revision_history": [
{
"date": "2018-01-18T21:55:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-01-18T21:55:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
}
],
"category": "product_family",
"name": "Oracle Java for Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
},
{
"cve": "CVE-2018-2783",
"discovery_date": "2018-04-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1569204"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2783"
},
{
"category": "external",
"summary": "RHBZ#1569204",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1569204"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2783",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2783"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA"
}
],
"release_date": "2018-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)"
}
]
}
rhsa-2018_0352
Vulnerability from csaf_redhat
Published
2018-02-26 21:37
Modified
2024-11-15 02:06
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0352",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0352.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:06:42+00:00",
"generator": {
"date": "2024-11-15T02:06:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:0352",
"initial_release_date": "2018-02-26T21:37:30+00:00",
"revision_history": [
{
"date": "2018-02-26T21:37:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:37:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:06:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el6_9?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.9.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:37:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Client-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6ComputeNode-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.i686",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.ppc64",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Workstation-Supplementary-6.9.z:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018_1463
Vulnerability from csaf_redhat
Published
2018-05-15 15:30
Modified
2024-11-15 02:08
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)
* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)
* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)
* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)
* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)
* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)
* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)
* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)
* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)
* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)
* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)
* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)
* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)
* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)
* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)
* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)
* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)
* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)
* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* IBM JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges (CVE-2018-1417)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2638)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment) (CVE-2018-2639)\n\n* OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962) (CVE-2018-2582)\n\n* Oracle JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer) (CVE-2018-2627)\n\n* OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606) (CVE-2018-2633)\n\n* OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600) (CVE-2018-2634)\n\n* OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998) (CVE-2018-2637)\n\n* OpenJDK: GTK library loading use-after-free (AWT, 8185325) (CVE-2018-2641)\n\n* Oracle JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX) (CVE-2018-2581)\n\n* OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449) (CVE-2018-2588)\n\n* OpenJDK: DnsClient missing source port randomization (JNDI, 8182125) (CVE-2018-2599)\n\n* OpenJDK: loading of classes from untrusted locations (I18n, 8182601) (CVE-2018-2602)\n\n* OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387) (CVE-2018-2603)\n\n* OpenJDK: insufficient strength of key agreement (JCE, 8185292) (CVE-2018-2618)\n\n* OpenJDK: GSS context use-after-free (JGSS, 8186212) (CVE-2018-2629)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization) (CVE-2018-2657)\n\n* OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284) (CVE-2018-2663)\n\n* OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289) (CVE-2018-2677)\n\n* OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142) (CVE-2018-2678)\n\n* OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525) (CVE-2018-2579)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1463",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1463.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:08:06+00:00",
"generator": {
"date": "2024-11-15T02:08:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:1463",
"initial_release_date": "2018-05-15T15:30:51+00:00",
"revision_history": [
{
"date": "2018-05-15T15:30:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-05-15T15:30:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:08:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el6_9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el6_9?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2657",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535353"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2657"
},
{
"category": "external",
"summary": "RHBZ#1535353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535353"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2657",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2657"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u181 and 7u171 (Serialization)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-15T15:30:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.src",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el6_9.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018:0351
Vulnerability from csaf_redhat
Published
2018-02-26 21:32
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP10.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP10.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page listed in the References section. (CVE-2018-2579, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0351",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/",
"url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0351.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:45+00:00",
"generator": {
"date": "2025-10-10T02:10:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0351",
"initial_release_date": "2018-02-26T21:32:17+00:00",
"revision_history": [
{
"date": "2018-02-26T21:32:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-02-26T21:32:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.10-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.4.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z-Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1417",
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568966"
}
],
"notes": [
{
"category": "description",
"text": "Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1417"
},
{
"category": "external",
"summary": "RHBZ#1568966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1417",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1417"
},
{
"category": "external",
"summary": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/138823"
}
],
"release_date": "2018-02-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges"
},
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-02-26T21:32:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Client-7.4.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7ComputeNode-7.4.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Server-7.4.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.i686",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.10-1jpp.1.el7.x86_64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.ppc64le",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.s390x",
"7Workstation-7.4.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.10-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
}
]
}
rhsa-2018:0099
Vulnerability from csaf_redhat
Published
2018-01-18 21:55
Modified
2025-10-10 02:10
Summary
Red Hat Security Advisory: java-1.8.0-oracle security update
Notes
Topic
An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
This update upgrades Oracle Java SE 8 to version 8 Update 161.
Security Fix(es):
* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.\n\nThis update upgrades Oracle Java SE 8 to version 8 Update 161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2018-2579, CVE-2018-2581, CVE-2018-2582, CVE-2018-2588, CVE-2018-2599, CVE-2018-2602, CVE-2018-2603, CVE-2018-2618, CVE-2018-2627, CVE-2018-2629, CVE-2018-2633, CVE-2018-2634, CVE-2018-2637, CVE-2018-2638, CVE-2018-2639, CVE-2018-2641, CVE-2018-2663, CVE-2018-2677, CVE-2018-2678)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0099",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html",
"url": "http://www.oracle.com/technetwork/java/javase/8u161-relnotes-4021379.html"
},
{
"category": "external",
"summary": "1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0099.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-oracle security update",
"tracking": {
"current_release_date": "2025-10-10T02:10:45+00:00",
"generator": {
"date": "2025-10-10T02:10:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2018:0099",
"initial_release_date": "2018-01-18T21:55:29+00:00",
"revision_history": [
{
"date": "2018-01-18T21:55:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-01-18T21:55:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:10:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
},
{
"category": "product_name",
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product": {
"name": "Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6"
}
}
}
],
"category": "product_family",
"name": "Oracle Java for Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_id": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.161-1jpp.1.el6_9?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6",
"product_id": "6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Client-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6",
"product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6",
"product_id": "6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Server-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6",
"product_id": "6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-OracleJava-6.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Client-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)",
"product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Server-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
},
"product_reference": "java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"relates_to_product_reference": "7Workstation-OracleJava-7.4.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-2579",
"cwe": {
"id": "CWE-567",
"name": "Unsynchronized Access to Shared Data in a Multithreaded Context"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534298"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "RHBZ#1534298",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534298"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2579"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: unsynchronized access to encryption key data (Libraries, 8172525)"
},
{
"cve": "CVE-2018-2581",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535354"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2581"
},
{
"category": "external",
"summary": "RHBZ#1535354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535354"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2581"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u171, 8u161, and 9.0.4 (JavaFX)"
},
{
"cve": "CVE-2018-2582",
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534768"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "RHBZ#1534768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2582"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)"
},
{
"cve": "CVE-2018-2588",
"cwe": {
"id": "CWE-90",
"name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534299"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAP component of OpenJDK failed to properly encode special characters in user names when adding them to an LDAP search query. A remote attacker could possibly use this flaw to manipulate LDAP queries performed by the LdapLoginModule class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "RHBZ#1534299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2588"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: LdapLoginModule insufficient username encoding in LDAP query (LDAP, 8178449)"
},
{
"cve": "CVE-2018-2599",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534543"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "RHBZ#1534543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2599"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)"
},
{
"cve": "CVE-2018-2602",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534525"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the I18n component of OpenJDK could use an untrusted search path when loading resource bundle classes. A local attacker could possibly use this flaw to execute arbitrary code as another local user by making their Java application load an attacker controlled class file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "RHBZ#1534525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534525"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2602"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loading of classes from untrusted locations (I18n, 8182601)"
},
{
"cve": "CVE-2018-2603",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534553"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive amount of memory if it parsed attacker supplied DER encoded input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "RHBZ#1534553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2603"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: DerValue unbounded memory allocation (Libraries, 8182387)"
},
{
"cve": "CVE-2018-2618",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534762"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using the negotiated secret.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "RHBZ#1534762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2618"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient strength of key agreement (JCE, 8185292)"
},
{
"cve": "CVE-2018-2627",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535352"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to the Windows installer only. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2627"
},
{
"category": "external",
"summary": "RHBZ#1535352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535352"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2627"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Installer)"
},
{
"cve": "CVE-2018-2629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534625"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JGSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A remote attacker could possibly make a Java application using JGSS to use a previously freed context.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GSS context use-after-free (JGSS, 8186212)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2629"
},
{
"category": "external",
"summary": "RHBZ#1534625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2629"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GSS context use-after-free (JGSS, 8186212)"
},
{
"cve": "CVE-2018-2633",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535036"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "RHBZ#1535036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2633"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)"
},
{
"cve": "CVE-2018-2634",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534943"
}
],
"notes": [
{
"category": "description",
"text": "The JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. It was discovered that this could cause global credentials to be unexpectedly used by an untrusted Java application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "RHBZ#1534943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2634"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: use of global credentials for HTTP/SPNEGO (JGSS, 8186600)"
},
{
"cve": "CVE-2018-2637",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534970"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "RHBZ#1534970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2637"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: SingleEntryRegistry incorrect setup of deserialization filter (JMX, 8186998)"
},
{
"cve": "CVE-2018-2638",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535350"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "RHBZ#1535350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2639",
"discovery_date": "2018-01-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535351"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "RHBZ#1535351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2639"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixJAVA"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)"
},
{
"cve": "CVE-2018-2641",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534766"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "RHBZ#1534766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2641"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: GTK library loading use-after-free (AWT, 8185325)"
},
{
"cve": "CVE-2018-2663",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534296"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "RHBZ#1534296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2663"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)"
},
{
"cve": "CVE-2018-2677",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534288"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "RHBZ#1534288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2677"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)"
},
{
"cve": "CVE-2018-2678",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2017-12-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1534263"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "RHBZ#1534263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2678"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)"
},
{
"cve": "CVE-2018-2783",
"discovery_date": "2018-04-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1569204"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2783"
},
{
"category": "external",
"summary": "RHBZ#1569204",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1569204"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2783",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2783"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2783"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA"
}
],
"release_date": "2018-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-01-18T21:55:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Client-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6ComputeNode-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Server-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.i686",
"6Workstation-OracleJava-6.9.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.1.el6_9.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Client-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7ComputeNode-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Server-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-devel-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-javafx-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-jdbc-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-plugin-1:1.8.0.161-1jpp.2.el7.x86_64",
"7Workstation-OracleJava-7.4.Z:java-1.8.0-oracle-src-1:1.8.0.161-1jpp.2.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)"
}
]
}
CERTFR-2018-AVI-036
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans Oracle Java SE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "JRockit version R28.3.16",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Java SE Embedded version 8u151",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Java Advanced Management Console version 2.8",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Java SE versions 6u171, 7u161, 8u152 et 9.0.1",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-2657",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2657"
},
{
"name": "CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"name": "CVE-2018-2641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2641"
},
{
"name": "CVE-2018-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2639"
},
{
"name": "CVE-2018-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2602"
},
{
"name": "CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"name": "CVE-2018-2675",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2675"
},
{
"name": "CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"name": "CVE-2018-2581",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2581"
},
{
"name": "CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"name": "CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"name": "CVE-2018-2582",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2582"
},
{
"name": "CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"name": "CVE-2018-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2634"
},
{
"name": "CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"name": "CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"name": "CVE-2018-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2638"
},
{
"name": "CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"name": "CVE-2018-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2627"
},
{
"name": "CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"name": "CVE-2018-2677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2677"
}
],
"initial_release_date": "2018-01-17T00:00:00",
"last_revision_date": "2018-01-17T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-036",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-01-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle Java SE.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle Java SE",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujan2018-3236628 du 16 janvier 2018",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujan2018verbose-3236630#JAVA du 16 janvier 2018",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018verbose-3236630.html#JAVA"
}
]
}
ghsa-fhf8-hwcx-gjxv
Vulnerability from github
Published
2022-05-13 01:17
Modified
2022-05-13 01:17
Severity ?
VLAI Severity ?
Details
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
{
"affected": [],
"aliases": [
"CVE-2018-2638"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-01-18T02:29:00Z",
"severity": "HIGH"
},
"details": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"id": "GHSA-fhf8-hwcx-gjxv",
"modified": "2022-05-13T01:17:20Z",
"published": "2022-05-13T01:17:20Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2638"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"type": "WEB",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20180117-0001"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/102546"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1040203"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
gsd-2018-2638
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-2638",
"description": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"id": "GSD-2018-2638",
"references": [
"https://www.suse.com/security/cve/CVE-2018-2638.html",
"https://access.redhat.com/errata/RHSA-2018:1463",
"https://access.redhat.com/errata/RHSA-2018:0352",
"https://access.redhat.com/errata/RHSA-2018:0351",
"https://access.redhat.com/errata/RHSA-2018:0099"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-2638"
],
"details": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"id": "GSD-2018-2638",
"modified": "2023-12-13T01:22:31.971858Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2018-2638",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Java",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Java SE: 8u152"
},
{
"version_affected": "=",
"version_value": "9.0.1"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:0351",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20180117-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"name": "RHSA-2018:0352",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "RHSA-2018:0099",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"name": "RHSA-2018:1463",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"name": "1040203",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1040203"
},
{
"name": "102546",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/102546"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.8.0:update152:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.8.0:update152:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:9.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:9.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_management_plug-ins:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vmware_vsphere:*:*",
"cpe_name": [],
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*",
"cpe_name": [],
"versionStartIncluding": "7.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*",
"cpe_name": [],
"versionStartIncluding": "9.5",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.0.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "11.70.1",
"versionStartIncluding": "11.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:*",
"cpe_name": [],
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:vmware_vsphere:*:*",
"cpe_name": [],
"versionStartIncluding": "7.2",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2018-2638"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20180117-0001/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"name": "1040203",
"refsource": "SECTRACK",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1040203"
},
{
"name": "RHSA-2018:0099",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"name": "102546",
"refsource": "BID",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/102546"
},
{
"name": "RHSA-2018:0352",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"name": "RHSA-2018:0351",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"name": "RHSA-2018:1463",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 6.0
}
},
"lastModifiedDate": "2023-11-21T18:27Z",
"publishedDate": "2018-01-18T02:29Z"
}
}
}
cnvd-2018-02254
Vulnerability from cnvd
Title
Oracle Java SE存在未明漏洞(CNVD-2018-02254)
Description
Oracle Java SE是美国甲骨文(Oracle)公司的一套标准版Java平台,用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Deployment是其中的一个开发组件。
Oracle Java SE中的Java SE组件8u152版本和9.0.1版本的Deployment子组件存在安全漏洞。攻击者可利用该漏洞控制组件,影响数据的完整性、保密性和可用性。
Severity
高
VLAI Severity ?
Patch Name
Oracle Java SE存在未明漏洞(CNVD-2018-02254)的补丁
Patch Description
Oracle Java SE是美国甲骨文(Oracle)公司的一套标准版Java平台,用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Deployment是其中的一个开发组件。
Oracle Java SE中的Java SE组件8u152版本和9.0.1版本的Deployment子组件存在安全漏洞。攻击者可利用该漏洞控制组件,影响数据的完整性、保密性和可用性。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Reference
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Impacted products
| Name | Oracle Java SE 8u152 |
|---|
{
"bids": {
"bid": {
"bidNumber": "102546"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2018-2638"
}
},
"description": "Oracle Java SE\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u6807\u51c6\u7248Java\u5e73\u53f0\uff0c\u7528\u4e8e\u5f00\u53d1\u548c\u90e8\u7f72\u684c\u9762\u3001\u670d\u52a1\u5668\u4ee5\u53ca\u5d4c\u5165\u8bbe\u5907\u548c\u5b9e\u65f6\u73af\u5883\u4e2d\u7684Java\u5e94\u7528\u7a0b\u5e8f\u3002Deployment\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u5f00\u53d1\u7ec4\u4ef6\u3002\r\n\r\nOracle Java SE\u4e2d\u7684Java SE\u7ec4\u4ef68u152\u7248\u672c\u548c9.0.1\u7248\u672c\u7684Deployment\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63a7\u5236\u7ec4\u4ef6\uff0c\u5f71\u54cd\u6570\u636e\u7684\u5b8c\u6574\u6027\u3001\u4fdd\u5bc6\u6027\u548c\u53ef\u7528\u6027\u3002",
"discovererName": "Oracle",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-02254",
"openTime": "2018-01-30",
"patchDescription": "Oracle Java SE\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u6807\u51c6\u7248Java\u5e73\u53f0\uff0c\u7528\u4e8e\u5f00\u53d1\u548c\u90e8\u7f72\u684c\u9762\u3001\u670d\u52a1\u5668\u4ee5\u53ca\u5d4c\u5165\u8bbe\u5907\u548c\u5b9e\u65f6\u73af\u5883\u4e2d\u7684Java\u5e94\u7528\u7a0b\u5e8f\u3002Deployment\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u5f00\u53d1\u7ec4\u4ef6\u3002\r\n\r\nOracle Java SE\u4e2d\u7684Java SE\u7ec4\u4ef68u152\u7248\u672c\u548c9.0.1\u7248\u672c\u7684Deployment\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63a7\u5236\u7ec4\u4ef6\uff0c\u5f71\u54cd\u6570\u636e\u7684\u5b8c\u6574\u6027\u3001\u4fdd\u5bc6\u6027\u548c\u53ef\u7528\u6027\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Oracle Java SE\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\uff08CNVD-2018-02254\uff09\u7684\u8865\u4e01",
"products": {
"product": "Oracle Java SE 8u152"
},
"referenceLink": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"serverity": "\u9ad8",
"submitTime": "2018-01-17",
"title": "Oracle Java SE\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\uff08CNVD-2018-02254\uff09"
}
fkie_cve-2018-2638
Vulnerability from fkie_nvd
Published
2018-01-18 02:29
Modified
2024-11-21 04:04
Severity ?
Summary
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
References
| URL | Tags | ||
|---|---|---|---|
| secalert_us@oracle.com | http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html | Patch, Vendor Advisory | |
| secalert_us@oracle.com | http://www.securityfocus.com/bid/102546 | Broken Link, Third Party Advisory, VDB Entry | |
| secalert_us@oracle.com | http://www.securitytracker.com/id/1040203 | Broken Link, Third Party Advisory, VDB Entry | |
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2018:0099 | Third Party Advisory | |
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2018:0351 | Third Party Advisory | |
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2018:0352 | Third Party Advisory | |
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2018:1463 | Third Party Advisory | |
| secalert_us@oracle.com | https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 | Third Party Advisory | |
| secalert_us@oracle.com | https://security.netapp.com/advisory/ntap-20180117-0001/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/102546 | Broken Link, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1040203 | Broken Link, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:0099 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:0351 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:0352 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:1463 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20180117-0001/ | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| oracle | jdk | 1.8.0 | |
| oracle | jdk | 9.0.1 | |
| oracle | jre | 1.8.0 | |
| oracle | jre | 9.0.1 | |
| redhat | satellite | 5.8 | |
| redhat | enterprise_linux_desktop | 6.0 | |
| redhat | enterprise_linux_desktop | 7.0 | |
| redhat | enterprise_linux_eus | 7.5 | |
| redhat | enterprise_linux_server | 6.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_workstation | 6.0 | |
| redhat | enterprise_linux_workstation | 7.0 | |
| netapp | active_iq_unified_manager | * | |
| netapp | active_iq_unified_manager | * | |
| netapp | cloud_backup | - | |
| netapp | e-series_santricity_management_plug-ins | - | |
| netapp | e-series_santricity_os_controller | * | |
| netapp | e-series_santricity_storage_manager | - | |
| netapp | e-series_santricity_web_services | - | |
| netapp | oncommand_insight | - | |
| netapp | oncommand_shift | - | |
| netapp | oncommand_unified_manager | - | |
| netapp | oncommand_workflow_automation | - | |
| netapp | plug-in_for_symantec_netbackup | - | |
| netapp | santricity_cloud_connector | - | |
| netapp | snapmanager | - | |
| netapp | snapmanager | - | |
| netapp | storage_replication_adapter_for_clustered_data_ontap | * | |
| netapp | storage_replication_adapter_for_clustered_data_ontap | * | |
| netapp | storagegrid | * | |
| netapp | vasa_provider_for_clustered_data_ontap | * | |
| netapp | vasa_provider_for_clustered_data_ontap | 6.0 | |
| netapp | virtual_storage_console | * | |
| netapp | virtual_storage_console | 6.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update152:*:*:*:*:*:*",
"matchCriteriaId": "A2EB8815-20EE-4A0B-A001-73995114333D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:9.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "796F8150-771C-4806-83D7-72C5F539ED1F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.8.0:update152:*:*:*:*:*:*",
"matchCriteriaId": "1988C207-4D9F-4FD2-9652-30CB2C65FE8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:9.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "76105155-2BDC-4A86-8DA4-4EC5362D5978",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "F4F86C3C-B99C-44C6-97D7-163DC3F59687",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "0CF73560-2F5B-4723-A8A1-9AADBB3ADA00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "BD075607-09B7-493E-8611-66D041FFDA62",
"versionStartIncluding": "7.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*",
"matchCriteriaId": "0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB",
"versionStartIncluding": "9.5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:e-series_santricity_management_plug-ins:-:*:*:*:*:*:*:*",
"matchCriteriaId": "20B49859-49F0-439B-AEF8-79EF71DA0D73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
"matchCriteriaId": "73F81EC3-4AB0-4CD7-B845-267C5974DE98",
"versionEndIncluding": "11.70.1",
"versionStartIncluding": "11.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D9CC59D-6182-4B5E-96B5-226FCD343916",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*",
"matchCriteriaId": "1AEFF829-A8F2-4041-8DDF-E705DB3ADED2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3BD81527-A341-42C3-9AB9-880D3DB04B08",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*",
"matchCriteriaId": "3FA5E22C-489B-4C5F-A5F3-C03F45CA8811",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5735E553-9731-4AAC-BCFF-989377F817B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FFE0A9D2-9A49-4BF6-BC6F-8249162D8334",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB15BCF1-1B1D-49D8-9B76-46DCB10044DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*",
"matchCriteriaId": "26A2B713-7D6D-420A-93A4-E0D983C983DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*",
"matchCriteriaId": "64DE38C8-94F1-4860-B045-F33928F676A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:vmware_vsphere:*:*",
"matchCriteriaId": "6BF60DAD-DAA2-4543-B82E-8E17F7B1DA06",
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "1E35D95E-CCBF-4335-A4DB-02218BA172DE",
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:*",
"matchCriteriaId": "73019FE2-F7CE-4B12-9DC1-8333F08A7D9C",
"versionEndIncluding": "9.0.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:*",
"matchCriteriaId": "13270F58-E106-48CE-9933-E68AABBBFC21",
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "923F6B82-6A8B-4994-89F6-C430775D5234",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vmware_vsphere:*:*",
"matchCriteriaId": "B7B42CB6-3C14-4183-AFA8-C3682F8B54AB",
"versionStartIncluding": "7.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2EAA5561-CA42-457A-B63E-96A79258758B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
},
{
"lang": "es",
"value": "Vulnerabilidad en el componente Java SE de Oracle Java SE (subcomponente: Deployment). Las versiones compatibles que se han visto afectadas son JavaSE: 8u152 y 9.0.1. Una vulnerabilidad dif\u00edcilmente explotable permite que un atacante sin autenticar que tenga acceso a red por m\u00faltiples protocolos comprometa la seguridad de Java SE. Para que los ataques tengan \u00e9xito, se necesita la participaci\u00f3n de otra persona diferente del atacante y, aunque la vulnerabilidad est\u00e1 presente en Java SE, los ataques podr\u00edan afectar seriamente a productos adicionales. Los ataques exitosos a esta vulnerabilidad pueden resultar en la toma de control de Java SE. Nota: Esta vulnerabilidad se aplica a implementaciones Java, normalmente en clientes que ejecutan aplicaciones Java Web Start en sandbox o applets Java en sandbox que cargan y ejecutan c\u00f3digo que no es de confianza (por ejemplo, c\u00f3digo proveniente de internet) y que conf\u00edan en la sandbox de aislado Java para protegerse. Esta vulnerabilidad no se aplica a implementaciones Java, normalmente en servidores, que solo cargan y ejecutan c\u00f3digo de confianza (por ejemplo, c\u00f3digo instalado por un administrador). CVSS 3.0 Base Score 8.3 (impactos en la confidencialidad, integridad y disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."
}
],
"id": "CVE-2018-2638",
"lastModified": "2024-11-21T04:04:07.590",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-01-18T02:29:20.850",
"references": [
{
"source": "secalert_us@oracle.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/102546"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1040203"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/102546"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1040203"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0099"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0351"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0352"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1463"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0001/"
}
],
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
suse-su-2018:0665-1
Vulnerability from csaf_suse
Published
2018-03-12 12:16
Modified
2018-03-12 12:16
Summary
Security update for java-1_8_0-ibm
Notes
Title of the patch
Security update for java-1_8_0-ibm
Description of the patch
This update for java-1_8_0-ibm fixes the following issues:
- Removed java-1_8_0-ibm-alsa and java-1_8_0-ibm-plugin entries in
baselibs.conf due to errors in osc source_validator
Version update to 8.0.5.10 [bsc#1082810]
* Security fixes:
CVE-2018-2639 CVE-2018-2638 CVE-2018-2633 CVE-2018-2637
CVE-2018-2634 CVE-2018-2582 CVE-2018-2641 CVE-2018-2618
CVE-2018-2603 CVE-2018-2599 CVE-2018-2602 CVE-2018-2678
CVE-2018-2677 CVE-2018-2663 CVE-2018-2588 CVE-2018-2579
* Defect fixes:
- IJ02608 Class Libraries: Change of namespace definitions with
handlers that implement javax.xml.ws.handler.soap.soaphandler
- IJ04280 Class Libraries: Deploy Upgrade to Oracle level 8u161-b12
- IJ03390 Class Libraries: JCL Upgrade to Oracle level 8u161-b12
- IJ04001 Class Libraries: Performance improvement with child
process on AIX
- IJ04281 Class Libraries: Startup time increase after applying
apar IV96905
- IJ03822 Class Libraries: Update timezone information to tzdata2017c
- IJ03440 Java Virtual Machine: Assertion failure during class creation
- IJ03717 Java Virtual Machine: Assertion for gencon with concurrent
scavenger on ZOS64
- IJ03513 Java Virtual Machine: Assertion in concurrent scavenger if
initial heap memory size -Xms is set too low
- IJ03994 Java Virtual Machine: Class.getmethods() does not return
all methods
- IJ03413 Java Virtual Machine: Hang creating thread after redefining
classes
- IJ03852 Java Virtual Machine: ICH408I message when groupaccess is
specified with -xshareclasses
- IJ03716 Java Virtual Machine: java/lang/linkageerror from
sun/misc/unsafe.definean onymousclass()
- IJ03116 Java Virtual Machine: java.fullversion string contains an
extra space
- IJ03347 Java Virtual Machine: java.lang.IllegalStateException in
related class MemoryMXBean
- IJ03878 Java Virtual Machine: java.lang.StackOverflowError is thrown
when custom security manager in place
- IJ03605 Java Virtual Machine: Legacy security for com.ibm.jvm.dump,
trace, log was not enabled by default
- IJ04248 JIT Compiler: ArrayIndexOutOfBoundsException is thrown when
converting BigDecimal to String
- IJ04250 JIT Compiler: Assertion failure with concurrentScavenge on Z14
- IJ03606 JIT Compiler: Java crashes with -version
- IJ04251 JIT Compiler: JIT compiled method that takes advantage of
AutoSIMD produces an incorrect result on x86
- IJ03854 JIT Compiler: JVM info message appears in stdout
- IJ03607 JIT Compiler: Result String contains a redundant dot when
converted from BigDecimal with 0 on all platforms
- IX90185 ORB: Upgrade ibmcfw.jar to version O1800.01
- IJ03715 Security: Add additional support for the IBMJCEPlus provider,
add support for new IBMJCEPlusFIPS provider
- IJ03800 Security: A fix in CMS provider for KDB integrity
- IJ04282 Security: Change in location and default of jurisdiction
policy files
- IJ03853 Security: IBMCAC provider does not support SHA224
- IJ02679 Security: IBMPKCS11Impl – Bad sessions are being allocated
internally
- IJ02706 Security: IBMPKCS11Impl – Bad sessions are being allocated
internally
- IJ03552 Security: IBMPKCS11Impl - Config file problem with the slot
specification attribute
- IJ01901 Security: IBMPKCS11Impl – SecureRandom.setSeed() exception
- IJ03801 Security: Issue with same DN certs, iKeyman GUI error with
stash, JKS Chain issue and JVM argument parse issue with iKeyman
- IJ03256 Security: javax.security.auth.Subject.toString() throws NPE
- PI93233 z/OS Extentions: Cipher.doFinal() fails when using
AES/GCM/nopadding with AAD data of 13 bytes and a block size
of 4081 to 4096
* Fixes in 8.0.5.7:
- IJ02605 Class Libraries: Update IBM-1371 charset with new specification
support
- IJ02541 Java Virtual Machine: Assertions in GC when jvmti runs with
Concurrent Scavenger
- IJ02443 Java Virtual Machine: Committed eden region size is bigger than
maximum eden region size
- IJ02378 Java Virtual Machine: Existing signal action for SIG_IGN/SIG_DFL
is not detected properly
- IJ02758 JIT Compiler: Crash in JIT module during method compilation
- IJ02733 JIT Compiler: Crash in jit module when compiling in non-default
configuration
* Fixes in 8.0.5.6:
- IJ02283 Java Virtual Machine: IllegalAccessException due to a missing
access check for the same class in MethodHandle apis
- IJ02082 Java Virtual Machine: The default value for class unloading kick
off threshold is not set
- IJ02018 JIT Compiler: Crash or assertion while attempting to acquire
VM access
- IJ02284 JIT Compiler: Division by zero in JIT compiler
- IV88941 JIT Compiler: JIT compiler takes far too long to compile a
method
- IJ02285 JIT Compiler: Performance degradation during class unloading in
Java 8 SR5
- Support Java jnlp files run from Firefox. [bsc#1076390]
Patchnames
SUSE-OpenStack-Cloud-6-2018-447,SUSE-SLE-SAP-12-SP1-2018-447,SUSE-SLE-SDK-12-SP2-2018-447,SUSE-SLE-SDK-12-SP3-2018-447,SUSE-SLE-SERVER-12-SP1-2018-447,SUSE-SLE-SERVER-12-SP2-2018-447,SUSE-SLE-SERVER-12-SP3-2018-447
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-ibm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n \nThis update for java-1_8_0-ibm fixes the following issues:\n\n- Removed java-1_8_0-ibm-alsa and java-1_8_0-ibm-plugin entries in\n baselibs.conf due to errors in osc source_validator\n\nVersion update to 8.0.5.10 [bsc#1082810]\n\n* Security fixes:\n\n CVE-2018-2639 CVE-2018-2638 CVE-2018-2633 CVE-2018-2637\n CVE-2018-2634 CVE-2018-2582 CVE-2018-2641 CVE-2018-2618\n CVE-2018-2603 CVE-2018-2599 CVE-2018-2602 CVE-2018-2678\n CVE-2018-2677 CVE-2018-2663 CVE-2018-2588 CVE-2018-2579\n\n* Defect fixes:\n\n - IJ02608 Class Libraries: Change of namespace definitions with\n \t handlers that implement javax.xml.ws.handler.soap.soaphandler\n - IJ04280 Class Libraries: Deploy Upgrade to Oracle level 8u161-b12\n - IJ03390 Class Libraries: JCL Upgrade to Oracle level 8u161-b12\n - IJ04001 Class Libraries: Performance improvement with child\n \t process on AIX\n - IJ04281 Class Libraries: Startup time increase after applying\n \t apar IV96905\n - IJ03822 Class Libraries: Update timezone information to tzdata2017c\n - IJ03440 Java Virtual Machine: Assertion failure during class creation\n - IJ03717 Java Virtual Machine: Assertion for gencon with concurrent\n \t scavenger on ZOS64\n - IJ03513 Java Virtual Machine: Assertion in concurrent scavenger if\n \t initial heap memory size -Xms is set too low\n - IJ03994 Java Virtual Machine: Class.getmethods() does not return\n \t all methods\n - IJ03413 Java Virtual Machine: Hang creating thread after redefining\n \t classes\n - IJ03852 Java Virtual Machine: ICH408I message when groupaccess is\n \t specified with -xshareclasses\n - IJ03716 Java Virtual Machine: java/lang/linkageerror from\n \t sun/misc/unsafe.definean onymousclass()\n - IJ03116 Java Virtual Machine: java.fullversion string contains an\n \t extra space\n - IJ03347 Java Virtual Machine: java.lang.IllegalStateException in\n \t related class MemoryMXBean\n - IJ03878 Java Virtual Machine: java.lang.StackOverflowError is thrown\n \t when custom security manager in place\n - IJ03605 Java Virtual Machine: Legacy security for com.ibm.jvm.dump,\n \t trace, log was not enabled by default\n - IJ04248 JIT Compiler: ArrayIndexOutOfBoundsException is thrown when\n \t converting BigDecimal to String\n - IJ04250 JIT Compiler: Assertion failure with concurrentScavenge on Z14\n - IJ03606 JIT Compiler: Java crashes with -version\n - IJ04251 JIT Compiler: JIT compiled method that takes advantage of\n \t AutoSIMD produces an incorrect result on x86\n - IJ03854 JIT Compiler: JVM info message appears in stdout\n - IJ03607 JIT Compiler: Result String contains a redundant dot when\n \t converted from BigDecimal with 0 on all platforms\n - IX90185 ORB: Upgrade ibmcfw.jar to version O1800.01\n - IJ03715 Security: Add additional support for the IBMJCEPlus provider,\n \t add support for new IBMJCEPlusFIPS provider\n - IJ03800 Security: A fix in CMS provider for KDB integrity\n - IJ04282 Security: Change in location and default of jurisdiction\n \t policy files\n - IJ03853 Security: IBMCAC provider does not support SHA224\n - IJ02679 Security: IBMPKCS11Impl \u2013 Bad sessions are being allocated\n \t internally\n - IJ02706 Security: IBMPKCS11Impl \u2013 Bad sessions are being allocated\n \t internally\n - IJ03552 Security: IBMPKCS11Impl - Config file problem with the slot\n \t specification attribute\n - IJ01901 Security: IBMPKCS11Impl \u2013 SecureRandom.setSeed() exception\n - IJ03801 Security: Issue with same DN certs, iKeyman GUI error with\n \t stash, JKS Chain issue and JVM argument parse issue with iKeyman\n - IJ03256 Security: javax.security.auth.Subject.toString() throws NPE\n - PI93233 z/OS Extentions: Cipher.doFinal() fails when using\n \t AES/GCM/nopadding with AAD data of 13 bytes and a block size\n\t of 4081 to 4096\n\n* Fixes in 8.0.5.7:\n\n - IJ02605 Class Libraries: Update IBM-1371 charset with new specification\n \t support\n - IJ02541 Java Virtual Machine: Assertions in GC when jvmti runs with\n \t Concurrent Scavenger\n - IJ02443 Java Virtual Machine: Committed eden region size is bigger than\n \t maximum eden region size\n - IJ02378 Java Virtual Machine: Existing signal action for SIG_IGN/SIG_DFL\n \t is not detected properly\n - IJ02758 JIT Compiler: Crash in JIT module during method compilation\n - IJ02733 JIT Compiler: Crash in jit module when compiling in non-default\n \t configuration\n\n* Fixes in 8.0.5.6:\n\n - IJ02283 Java Virtual Machine: IllegalAccessException due to a missing\n \t access check for the same class in MethodHandle apis\n - IJ02082 Java Virtual Machine: The default value for class unloading kick\n \t off threshold is not set\n - IJ02018 JIT Compiler: Crash or assertion while attempting to acquire\n \t VM access\n - IJ02284 JIT Compiler: Division by zero in JIT compiler\n - IV88941 JIT Compiler: JIT compiler takes far too long to compile a\n \t method\n - IJ02285 JIT Compiler: Performance degradation during class unloading in\n \t Java 8 SR5\n\n- Support Java jnlp files run from Firefox. [bsc#1076390]\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-OpenStack-Cloud-6-2018-447,SUSE-SLE-SAP-12-SP1-2018-447,SUSE-SLE-SDK-12-SP2-2018-447,SUSE-SLE-SDK-12-SP3-2018-447,SUSE-SLE-SERVER-12-SP1-2018-447,SUSE-SLE-SERVER-12-SP2-2018-447,SUSE-SLE-SERVER-12-SP3-2018-447",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0665-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0665-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180665-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0665-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-March/003808.html"
},
{
"category": "self",
"summary": "SUSE Bug 1076390",
"url": "https://bugzilla.suse.com/1076390"
},
{
"category": "self",
"summary": "SUSE Bug 1082810",
"url": "https://bugzilla.suse.com/1082810"
},
{
"category": "self",
"summary": "SUSE Bug 929900",
"url": "https://bugzilla.suse.com/929900"
},
{
"category": "self",
"summary": "SUSE Bug 955131",
"url": "https://bugzilla.suse.com/955131"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2579 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2579/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2582 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2588 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2599 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2602 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2603 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2618 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2633 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2634 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2637 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2638 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2638/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2639 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2641 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2663 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2677 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-2678 page",
"url": "https://www.suse.com/security/cve/CVE-2018-2678/"
}
],
"title": "Security update for java-1_8_0-ibm",
"tracking": {
"current_release_date": "2018-03-12T12:16:09Z",
"generator": {
"date": "2018-03-12T12:16:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0665-1",
"initial_release_date": "2018-03-12T12:16:09Z",
"revision_history": [
{
"date": "2018-03-12T12:16:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"product_id": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"product_id": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 6",
"product": {
"name": "SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-2579",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2579"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2579",
"url": "https://www.suse.com/security/cve/CVE-2018-2579"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2579",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2579",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "low"
}
],
"title": "CVE-2018-2579"
},
{
"cve": "CVE-2018-2582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2582"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 6.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2582",
"url": "https://www.suse.com/security/cve/CVE-2018-2582"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2582",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2582",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2582"
},
{
"cve": "CVE-2018-2588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2588"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: LDAP). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2588",
"url": "https://www.suse.com/security/cve/CVE-2018-2588"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2588",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2588",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2588"
},
{
"cve": "CVE-2018-2599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2599"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded, JRockit accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2599",
"url": "https://www.suse.com/security/cve/CVE-2018-2599"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2599",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2599",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2599"
},
{
"cve": "CVE-2018-2602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2602"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: I18n). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE, Java SE Embedded executes to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2602",
"url": "https://www.suse.com/security/cve/CVE-2018-2602"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2602",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2602",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2602"
},
{
"cve": "CVE-2018-2603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2603"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2603",
"url": "https://www.suse.com/security/cve/CVE-2018-2603"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2603",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2603",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2603"
},
{
"cve": "CVE-2018-2618",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2618"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2618",
"url": "https://www.suse.com/security/cve/CVE-2018-2618"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2618",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2618",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2618"
},
{
"cve": "CVE-2018-2633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2633"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, JRockit, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2633",
"url": "https://www.suse.com/security/cve/CVE-2018-2633"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2633",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2633",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "important"
}
],
"title": "CVE-2018-2633"
},
{
"cve": "CVE-2018-2634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2634"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. While the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.8 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2634",
"url": "https://www.suse.com/security/cve/CVE-2018-2634"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2634",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2634",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2634"
},
{
"cve": "CVE-2018-2637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2637"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2637",
"url": "https://www.suse.com/security/cve/CVE-2018-2637"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2637",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2637",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "important"
}
],
"title": "CVE-2018-2637"
},
{
"cve": "CVE-2018-2638",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2638"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2638",
"url": "https://www.suse.com/security/cve/CVE-2018-2638"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2638",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2638",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "important"
}
],
"title": "CVE-2018-2638"
},
{
"cve": "CVE-2018-2639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2639"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2639",
"url": "https://www.suse.com/security/cve/CVE-2018-2639"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2639",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2639",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "important"
}
],
"title": "CVE-2018-2639"
},
{
"cve": "CVE-2018-2641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2641"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2641",
"url": "https://www.suse.com/security/cve/CVE-2018-2641"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2641",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2641",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2641"
},
{
"cve": "CVE-2018-2663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2663"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2663",
"url": "https://www.suse.com/security/cve/CVE-2018-2663"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2663",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2663",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2663"
},
{
"cve": "CVE-2018-2677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2677"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2677",
"url": "https://www.suse.com/security/cve/CVE-2018-2677"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2677",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2677",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2677"
},
{
"cve": "CVE-2018-2678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-2678"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-2678",
"url": "https://www.suse.com/security/cve/CVE-2018-2678"
},
{
"category": "external",
"summary": "SUSE Bug 1076366 for CVE-2018-2678",
"url": "https://bugzilla.suse.com/1076366"
},
{
"category": "external",
"summary": "SUSE Bug 1082810 for CVE-2018-2678",
"url": "https://bugzilla.suse.com/1082810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-alsa-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-devel-1.8.0_sr5.10-30.16.1.x86_64",
"SUSE OpenStack Cloud 6:java-1_8_0-ibm-plugin-1.8.0_sr5.10-30.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-12T12:16:09Z",
"details": "moderate"
}
],
"title": "CVE-2018-2678"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…