all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6528-1: OpenJDK 8 vulnerabilities

Add to bookmarks
Nov. 29, 2023, 11 p.m. |

Ubuntu security notices ubuntu.com

It was discovered that the HotSpot VM implementation in OpenJDK did not
properly validate bytecode blocks in certain situations. An attacker could
possibly use this to cause a denial of service. (CVE-2022-40433)

Carter Kozak discovered that OpenJDK, when compiling with AVX-512
instruction support enabled, could produce code that resulted in memory
corruption in certain situations. An attacker targeting applications built
in this way could possibly use this to cause a denial of service or execute
arbitrary code. In Ubuntu, OpenJDK …

attacker avx bytecode carter code corruption cve denial of service hotspot implementation memory memory corruption openjdk service support usn vulnerabilities

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6747-2: Firefox regressions 5 hours ago | ubuntu.com
advisory attacker denial of service domains +14
USN-6760-1: Gerbv vulnerability 1 day, 10 hours ago | ubuntu.com
application attacker crash data +10
LSN-0103-1: Kernel Live Patch Security Notice 1 day, 21 hours ago | ubuntu.com
attacker con cve data +21
USN-6758-1: JSON5 vulnerability 1 day, 22 hours ago | ubuntu.com
access application attacker denial of service +12
USN-6761-1: Anope vulnerability 2 days, 1 hour ago | ubuntu.com
accounts attacker changing credentials +7
USN-6759-1: FreeRDP vulnerabilities 2 days, 16 hours ago | ubuntu.com
attacker crash denial of service issue +7
USN-6757-1: PHP vulnerabilities 2 days, 18 hours ago | ubuntu.com
arbitrary code attacker code cookie +15
USN-6744-3: Pillow vulnerability 2 days, 19 hours ago | ubuntu.com
advisory automated buffer buffer overflow +12
USN-6734-2: libvirt vulnerabilities 2 days, 21 hours ago | ubuntu.com
advisory api attacker crash +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;
View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya
View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia
View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States
View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote
View on infosec-jobs.com
View more jobs