PT-2016-6572 · Oracle+5 · Oracle Java Se+7

Published

2016-10-19

·

Updated

2025-11-04

·

CVE-2016-5597

CVSS v3.1

5.9

Medium

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 6u121, 7u111, 8u102 Java SE Embedded version 8u101
Description The issue affects confidentiality and is related to the Networking component in Oracle Java SE, and the Libraries component in both Oracle Java SE and Java SE Embedded. It has low integrity impact and no availability impact.
Recommendations For Oracle Java SE versions 6u121, 7u111, 8u102, update to a version that addresses the issue. For Java SE Embedded version 8u101, update to a version that addresses the issue. As a temporary workaround, consider restricting access to the Networking component until a patch is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CESA-2016_2079
CESA-2016_2658
CESA-2017_0061
CVE-2016-5597
DLA-704-1
DSA-3707-1
MGASA-2016-0359
OPENSUSE-SU-2016_2862-1
OPENSUSE-SU-2016_2985-1
OPENSUSE-SU-2024:10197-1
OPENSUSE-SU-2024:10534-1
RHSA-2016:2079
RHSA-2016:2088
RHSA-2016:2089
RHSA-2016:2090
RHSA-2016:2136
RHSA-2016:2137
RHSA-2016:2138
RHSA-2016:2658
RHSA-2016:2659
RHSA-2016_2079
RHSA-2016_2088
RHSA-2016_2089
RHSA-2016_2090
RHSA-2016_2136
RHSA-2016_2137
RHSA-2016_2658
RHSA-2016_2659
RHSA-2017:0061
RHSA-2017:1216
RHSA-2017_0061
SUSE-SU-2016:2887-1
SUSE-SU-2016:2953-1
SUSE-SU-2016:3010-1
SUSE-SU-2016:3040-1
SUSE-SU-2016:3041-1
SUSE-SU-2016:3043-1
SUSE-SU-2016:3068-1
SUSE-SU-2016:3078-1
USN-3121-1
USN-3130-1
USN-3154-1

Affected Products

Centos
Ibm Aix
Java Platform
Java Se Embedded
Oracle Java Se
Red Hat
Suse
Ubuntu