Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote malicious users to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this is a heap-based buffer overflow in the readImage function, which allows remote malicious users to execute arbitrary code via crafted image data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle jdk 1.8.0 |
||
oracle jdk 1.6.0 |
||
oracle jdk 1.7.0 |
||
oracle jre 1.6.0 |
||
oracle jre 1.7.0 |
||
oracle jre 1.8.0 |
||
oracle jrockit r28.3.8 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 15.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 15.04 |