Oracle Java SE is prone to a remote security vulnerability.
The vulnerability can be exploited over multiple protocols. This issue affects the 'RMI' component.
This vulnerability affects the following supported versions:
Java SE: 7u211, 8u202, 11.0.2, 12; Java SE Embedded: 8u201
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
| Bugtraq ID: | 107922 |
| Class: | Unknown |
| CVE: | CVE-2019-2684 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 16 2019 12:00AM |
| Updated: | Apr 16 2019 12:00AM |
| Credit: | Robert Xiao and Corwin de Boor |
| Vulnerable: | Oracle JRE(Windows Production Release) 11.0.2 Oracle JRE(Windows Production Release) 1.8 Update 202 Oracle JRE(Windows Production Release) 1.8 Update 201 Oracle JRE(Windows Production Release) 1.7 Update 211 Oracle JRE(Windows Production Release) 12 Oracle JRE(Solaris Production Release) 11.0.2 Oracle JRE(Solaris Production Release) 1.8 Update 202 Oracle JRE(Solaris Production Release) 1.8 Update 201 Oracle JRE(Solaris Production Release) 1.7 Update 211 Oracle JRE(Solaris Production Release) 12 Oracle JRE(macOS Production Release) 11.0.2 Oracle JRE(macOS Production Release) 1.8 Update 202 Oracle JRE(macOS Production Release) 1.8 Update 201 Oracle JRE(macOS Production Release) 1.7 Update 211 Oracle JRE(macOS Production Release) 12 Oracle JRE(Linux Production Release) 11.0.2 Oracle JRE(Linux Production Release) 1.8 Update 202 Oracle JRE(Linux Production Release) 1.8 Update 201 Oracle JRE(Linux Production Release) 1.7 Update 211 Oracle JRE(Linux Production Release) 12 Oracle JDK(Windows Production Release) 11.0.2 Oracle JDK(Windows Production Release) 1.8 Update 202 Oracle JDK(Windows Production Release) 1.8 Update 201 Oracle JDK(Windows Production Release) 1.7 Update 211 Oracle JDK(Windows Production Release) 12 Oracle JDK(Solaris Production Release) 11.0.2 Oracle JDK(Solaris Production Release) 1.8 Update 202 Oracle JDK(Solaris Production Release) 1.8 Update 201 Oracle JDK(Solaris Production Release) 1.7 Update 211 Oracle JDK(Solaris Production Release) 12 Oracle JDK(macOS Production Release) 11.0.2 Oracle JDK(macOS Production Release) 1.8 Update 202 Oracle JDK(macOS Production Release) 1.8 Update 201 Oracle JDK(macOS Production Release) 1.7 Update 211 Oracle JDK(macOS Production Release) 12 Oracle JDK(Linux Production Release) 11.0.2 Oracle JDK(Linux Production Release) 1.8 Update 202 Oracle JDK(Linux Production Release) 1.8 Update 201 Oracle JDK(Linux Production Release) 1.7 Update 211 Oracle JDK(Linux Production Release) 12 |
| Not Vulnerable: | |
References:
- Oracle Homepage (Oracle)
- IBM SECURITY ADVISORY (IBM)
- Oracle Critical Patch Update Advisory - April 2019 (Oracle)
from SecurityFocus Vulnerabilities https://ift.tt/2LvnBYK
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.