CVE-2015-0437: Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to…

CVE-2015-0437 [CRITICAL] OpenJDK: code generation issue (Hotspot, 8064524) OpenJDK: code generation issue (Hotspot, 8064524) Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. A flaw was found in the way the Hotspot component in OpenJDK in the way this component generated code for bytecode. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions. Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 5) - Not affected Package: java-1.6.0-sun (Red Hat Enterprise Linux 5) - Not affected Package: java-1.7.0-openjdk (Red Hat Enterprise Linux 5) - Not affected Package: java-1.7.0-oracle (Red Hat Enterprise Linux 5) - Not affected Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 6) - Not affecte

CVE-2015-0437 [CRITICAL] CVE-2015-0437: openjdk-8 - Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affe... Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. Scope: local sid: resolved (fixed in 8u40~b22-1)

CVE-2015-0437 [HIGH] GHSA-gj79-mmh9-3f7f: Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors re Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

CVE-2015-0437 [CRITICAL] CVE-2015-0437 OpenJDK: code generation issue (Hotspot, 8064524) CVE-2015-0437 OpenJDK: code generation issue (Hotspot, 8064524) A flaw was found in the way the Hotspot JVM code compiler generated optimized code. An untrusted Java application or applet could use this flaw to bypass Java sandbox restrictions. Discussion: Public now via Oracle Critical Patch Update - January 2015. Fixed in Oracle Java SE 8u31. External References: http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixJAVA --- This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2015:0069 https://rhn.redhat.com/errata/RHSA-2015-0069.html --- Upstream OpenJDK commit: http://hg.openjdk.java.net/jdk8u/jdk8u/hotspot/rev/9906d432d6db --- This issue has been addressed in the following products: Oracle Java for Red