PT-2016-5450 · Oracle+4 · Jrockit+7

Published

2016-04-20

Updated

2024-06-15

CVE-2016-3425

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 6u113, 7u99, and 8u77 Oracle Java SE Embedded version 8u77 JRockit version R28.3.9

Description The issue allows remote attackers to affect availability via vectors related to JAXP.

Recommendations For Oracle Java SE versions 6u113, 7u99, and 8u77, update to a version that fixes this issue. For Oracle Java SE Embedded version 8u77, update to a version that fixes this issue. For JRockit version R28.3.9, update to a version that fixes this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2016_0650

CESA-2016_0651

CESA-2016_0675

CESA-2016_0676

CESA-2016_0723

CVE-2016-3425

DLA-451-1

DSA-3558-1

MGASA-2016-0149

OPENSUSE-SU-2016_1222-1

OPENSUSE-SU-2016_1230-1

OPENSUSE-SU-2016_1235-1

OPENSUSE-SU-2016_1262-1

OPENSUSE-SU-2016_1265-1

OPENSUSE-SU-2024:10197-1

OPENSUSE-SU-2024:10534-1

RHSA-2016:0650

RHSA-2016:0651

RHSA-2016:0675

RHSA-2016:0676

RHSA-2016:0677

RHSA-2016:0678

RHSA-2016:0679

RHSA-2016:0723

RHSA-2016_0650

RHSA-2016_0651

RHSA-2016_0675

RHSA-2016_0676

RHSA-2016_0677

RHSA-2016_0678

RHSA-2016_0679

RHSA-2016_0723

SUSE-SU-2016:1248-1

SUSE-SU-2016:1250-1

USN-2963-1

USN-2964-1

USN-2972-1

Affected Products

Centos

Jrockit

Java Platform

Oracle Java Se

Oracle Java Se Embedded

Red Hat

Suse

Ubuntu

PT-2016-5450 · Oracle+4 · Jrockit+7

CVE-2016-3425

Related Identifiers

Affected Products

References · 377