正文

Eclipse OpenJ9 缓冲区错误漏洞

admin
admin V管理员 /0 评论 /12 阅读
0221
此篇文章发布距今已超过1225天,您需要注意文章的内容或图片是否可用!

漏洞信息详情

Eclipse OpenJ9 缓冲区错误漏洞

  • CNNVD编号:CNNVD-201904-935
    • <!--
  • 危害等级: 高危-->
  • 危害等级: 高危
  • CVE编号: CVE-2019-10245
  • 漏洞类型: 缓冲区错误
  • 发布时间: 2019-04-19
  • 威胁类型: 远程
  • 更新时间: 2021-10-29
  • 厂        商:
  • 漏洞来源: Red Hat

漏洞简介

Eclipse OpenJ9是Eclipse基金会的一款Java应用程序引擎。该产品主要用于运行Java应用程序。

Eclipse OpenJ9 0.14.0之前版本中存在缓冲区错误漏洞。攻击者可利用该漏洞造成拒绝服务(崩溃)。

漏洞公告

目前厂商已发布升级补丁以修复漏洞,补丁获取链接:

https://bugs.eclipse.org/bugs/show_bug.cgi?id=545588

参考网址

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1164

来源:github.com

链接:https://github.com/eclipse/openj9/pull/5528

来源:bugs.eclipse.org

链接:https://bugs.eclipse.org/bugs/show_bug.cgi?id=545588

来源:www.apache.org

链接:http://www.apache.org/

来源:github.com

链接:https://github.com/eclipse/openj9/pull/5529

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1163

来源:access.redhat.com

链接:https://access.redhat.com/security/cve/cve-2019-10245

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1166

来源:BID

链接:http://www.securityfocus.com/bid/108094

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1165

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1238

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2019:1325

来源:aix.software.ibm.com

链接:http://aix.software.ibm.com/aix/efixes/security/java_apr2019_advisory.asc

来源:access.redhat.com

链接:https://access.redhat.com/errata/RHSA-2019:1163

来源:www.ibm.com

链接:http://www.ibm.com/support/docview.wss?uid=ibm10882850

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-runtime-affects-ibm-agile-lifecycle-manager/

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2019-10245

来源:www.securityfocus.com

链接:https://www.securityfocus.com/bid/108094

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/152866/Red-Hat-Security-Advisory-2019-1163-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/80014

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/80982

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/152956/Red-Hat-Security-Advisory-2019-1238-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/81214

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-the-ibm-sdk-java-technology-edition-affects-ibm-performance-management-products/

受影响实体

    暂无


补丁

  • Eclipse OpenJ9 输入验证错误漏洞的修复措施
    <!--
    2019-4-19
    -->