Search CVE reports

Toggle filters

1 – 7 of 7 results

CVE-2025-0509

Medium priority
Ignored

A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks.

11 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-18, openjdk-19...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Not affected Not affected Not affected Not affected
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Not affected Not affected Not affected
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release
openjdk-8 Not affected Not affected Not affected Not affected Not affected
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Not affected Not affected Not affected Not affected
Show all 11 packages Show less packages

CVE-2025-21502

Medium priority

Some fixes available 17 of 20

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13,...

13 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-17-crac, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Fixed Fixed Fixed Fixed
openjdk-17-crac Not in release Not in release Not in release Not in release Not in release
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Fixed Fixed Fixed
openjdk-21-crac Not in release Not in release Not in release Not in release Not in release
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release
openjdk-8 Not affected Not affected Not affected Not affected Not affected
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed
Show all 13 packages Show less packages

CVE-2024-21235

Medium priority

Some fixes available 23 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24,...

13 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-17-crac, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Fixed Fixed Fixed Fixed
openjdk-17-crac Not in release Not in release Not in release Not in release Not in release
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Fixed Fixed Fixed
openjdk-21-crac Not in release Not in release Not in release Not in release Not in release
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release Not in release Not in release
openjdk-8 Fixed Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed
Show all 13 packages Show less packages

CVE-2024-21217

Low priority

Some fixes available 23 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u421,...

13 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-17-crac, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Fixed Fixed Fixed Fixed
openjdk-17-crac Not in release Not in release Not in release Not in release Not in release
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Fixed Fixed Fixed
openjdk-21-crac Not in release Not in release Not in release Not in release Not in release
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release Not in release Not in release
openjdk-8 Fixed Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed
Show all 13 packages Show less packages

CVE-2024-21211

Low priority
Needs evaluation

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Compiler). Supported versions that are affected are Oracle Java SE: 23; Oracle GraalVM for JDK:...

1 affected package

openjdk-23

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-23 Not in release Not in release Not in release
Show less packages

CVE-2024-21210

Low priority

Some fixes available 23 of 26

Vulnerability in Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows...

13 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-17-crac, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Fixed Fixed Fixed Fixed
openjdk-17-crac Not in release Not in release Not in release Not in release Not in release
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Fixed Fixed Fixed
openjdk-21-crac Not in release Not in release Not in release Not in release Not in release
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release Not in release Not in release
openjdk-8 Fixed Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed
Show all 13 packages Show less packages

CVE-2024-21208

Low priority

Some fixes available 23 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24,...

13 affected packages

openjdk-13, openjdk-16, openjdk-17, openjdk-17-crac, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk-13 Not in release Not in release Ignored
openjdk-16 Not in release Not in release Ignored
openjdk-17 Fixed Fixed Fixed Fixed
openjdk-17-crac Not in release Not in release Not in release Not in release Not in release
openjdk-18 Not in release Ignored Not in release
openjdk-19 Not in release Ignored Not in release
openjdk-21 Fixed Fixed Fixed
openjdk-21-crac Not in release Not in release Not in release Not in release Not in release
openjdk-22 Not in release Not in release Not in release
openjdk-23 Not in release Not in release Not in release Not in release Not in release
openjdk-8 Fixed Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed
Show all 13 packages Show less packages