CVE-2018-3139

NameCVE-2018-3139
DescriptionVulnerability in the Java SE, Java SE Embedded component of Oracle Jav ...
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-1590-1, DSA-4326-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
openjdk-11 (PTS)buster11.0.14+9-1~deb10u1fixed
buster (security)11.0.15+10-1~deb10u1fixed
bullseye11.0.14+9-1~deb11u1fixed
bullseye (security)11.0.15+10-1~deb11u1fixed
bookworm, sid11.0.15+10-1fixed
openjdk-8 (PTS)sid8u332-ga-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
openjdk-10source(unstable)10.0.2+13-2
openjdk-11source(unstable)11.0.1+13-1
openjdk-7sourcejessie7u181-2.6.14-2~deb8u1DLA-1590-1
openjdk-7source(unstable)(unfixed)
openjdk-8sourcestretch8u181-b13-2~deb9u1DSA-4326-1
openjdk-8source(unstable)8u181-b13-2
Search for package or bug name: Reporting problems