KLA11403
Multiple vulnerabilities in Oracle Java SE
Updated: 05/22/2020
Detect date
?
01/15/2019
Severity
?
High
Description

Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. A divide by zero vulnerability in libjpeg (ImageIO component) can be exploited remotely to cause denial of service;
  2. A vulnerability in Networking component can be exploited remotely to obtain sensitive information;
  3. A vulnerability in Deployment component can be exploited remotely to cause denial of service;
  4. A vulnerability in Libraries component can be exploited remotely to obtain sensitive information;
Affected products

Oracle Java JRE 1.8.x earlier than 8u201

Solution

Update to the latest version

Original advisories

Oracle Critical Patch Update Advisory – January 2019

Impacts
?
OSI 
[?]

DoS 
[?]
Related products
Oracle Java JRE 1.7.x
Oracle Java JRE 1.8.x
CVE-IDS
?
CVE-2018-112125.3High
CVE-2019-24263.7Warning
CVE-2019-24493.1Warning
CVE-2019-24223.1Warning