Eclipse Foundation Open J9 vulnerabilities
2 known vulnerabilities affecting eclipse_foundation/open_j9.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-10917MEDIUMCVSS 5.3≥ 0.8.0, ≤ 0.47.02024-11-11
CVE-2024-10917 [LOW] CWE-190 CVE-2024-10917: In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect v
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters.
cvelistv5nvd
CVE-2024-3933HIGHCVSS 7.3≥ 0.13.0, < 0.44.02024-05-27
CVE-2024-3933 [MEDIUM] CWE-125 CVE-2024-3933: In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -X
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage [1], could allow access to a buffer with an incorrect length value when executing an arraycopy sequence while
cvelistv5nvd