Search CVE reports

51 – 60 of 84 results

Detailed view

Sort by:

CVE-2022-39399

Medium priority

Some fixes available 11 of 12

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise...

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Fixed	Fixed	Fixed	Not in release
openjdk-18	—	Ignored	Not in release	Not in release	Not in release
openjdk-19	—	Fixed	Not in release	Not in release	Not in release
openjdk-8	—	Not affected	Not affected	Not affected	Not affected
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21628

Medium priority

Some fixes available 16 of 17

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1,...

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Fixed	Fixed	Fixed	Not in release
openjdk-18	—	Ignored	Not in release	Not in release	Not in release
openjdk-19	—	Fixed	Not in release	Not in release	Not in release
openjdk-8	—	Fixed	Fixed	Fixed	Fixed
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21626

Medium priority

Some fixes available 9 of 10

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM...

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Not affected	Not affected	Not affected	Not in release
openjdk-18	—	Not affected	Not in release	Not in release	Not in release
openjdk-19	—	Not affected	Not in release	Not in release	Not in release
openjdk-8	—	Fixed	Fixed	Fixed	Fixed
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21624

Medium priority

Some fixes available 15 of 16

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle...

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Fixed	Fixed	Fixed	Not in release
openjdk-18	—	Ignored	Not in release	Not in release	Not in release
openjdk-19	—	Fixed	Not in release	Not in release	Not in release
openjdk-8	—	Fixed	Fixed	Fixed	Fixed
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21619

Medium priority

Some fixes available 15 of 16

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Fixed	Fixed	Fixed	Not in release
openjdk-18	—	Ignored	Not in release	Not in release	Not in release
openjdk-19	—	Fixed	Not in release	Not in release	Not in release
openjdk-8	—	Fixed	Fixed	Fixed	Fixed
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21618

Medium priority

Some fixes available 10 of 11

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3...

9 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	—	Not affected	Not affected	Not affected	Not affected
openjdk-13	—	Not in release	Ignored	Not in release	Not in release
openjdk-16	—	Not in release	Ignored	Not in release	Not in release
openjdk-17	—	Fixed	Fixed	Fixed	Not in release
openjdk-18	—	Ignored	Not in release	Not in release	Not in release
openjdk-19	—	Fixed	Not in release	Not in release	Not in release
openjdk-8	—	Not affected	Not affected	Not affected	Not affected
openjdk-9	—	Not in release	Not in release	Not in release	Ignored
openjdk-lts	—	Fixed	Fixed	Fixed	Not in release

CVE-2022-21549

Medium priority

Some fixes available 14 of 29

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle GraalVM Enterprise Edition: 21.3.2...

10 affected packages

icedtea-web, openjdk-12, openjdk-13, openjdk-15, openjdk-16...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
openjdk-12	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-13	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-15	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-16	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-17	Not affected	Fixed	Fixed	Fixed	Not in release
openjdk-18	Not in release	Fixed	Not in release	Not in release	Not in release
openjdk-8	Not affected	Not affected	Not affected	Not affected	Not affected
openjdk-9	Not in release	Not in release	Not in release	Not in release	Ignored
openjdk-lts	Fixed	Fixed	Fixed	Fixed	Not in release

CVE-2022-21541

Medium priority

Some fixes available 22 of 38

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle...

10 affected packages

icedtea-web, openjdk-12, openjdk-13, openjdk-15, openjdk-16...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
openjdk-12	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-13	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-15	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-16	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-17	Fixed	Fixed	Fixed	Fixed	Not in release
openjdk-18	Not in release	Fixed	Not in release	Not in release	Not in release
openjdk-8	Not affected	Fixed	Fixed	Fixed	Fixed
openjdk-9	Not in release	Not in release	Not in release	Not in release	Ignored
openjdk-lts	Fixed	Fixed	Fixed	Fixed	Not in release

CVE-2022-21540

Medium priority

Some fixes available 22 of 38

10 affected packages

icedtea-web, openjdk-12, openjdk-13, openjdk-15, openjdk-16...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
openjdk-12	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-13	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-15	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-16	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-17	Fixed	Fixed	Fixed	Fixed	Not in release
openjdk-18	Not in release	Fixed	Not in release	Not in release	Not in release
openjdk-8	Not affected	Fixed	Fixed	Fixed	Fixed
openjdk-9	Not in release	Not in release	Not in release	Not in release	Ignored
openjdk-lts	Fixed	Fixed	Fixed	Fixed	Not in release

CVE-2022-34169

Medium priority

Some fixes available 18 of 36

The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute...

11 affected packages

icedtea-web, libxalan2-java, openjdk-12, openjdk-13, openjdk-15...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icedtea-web	Not affected	Not affected	Not affected	Not affected	Not affected
libxalan2-java	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
openjdk-12	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-13	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-15	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-16	Not in release	Not in release	Ignored	Not in release	Not in release
openjdk-17	Not affected	Fixed	Fixed	Fixed	Not in release
openjdk-18	Not in release	Fixed	Not in release	Not in release	Not in release
openjdk-8	Not affected	Fixed	Fixed	Fixed	Fixed
openjdk-9	Not in release	Not in release	Not in release	Not in release	Ignored
openjdk-lts	Fixed	Fixed	Fixed	Fixed	Not in release

Export to JSON

Results by page: