VDB
GCVE-110-MAGEIA-2018-436
GCVE-110-MAGEIA-2018-436
Advisory Published
Updated java-1.8.0-openjdk packages fix security vulnerabilities:
Incorrect handling of unsigned attributes in singed Jar manifests
(Security, 8194534) (CVE-2018-3136).
Leak of sensitive header data via HTTP redirect (Networking, 8196902)
(CVE-2018-3139).
Incomplete enforcement of the trustURLCodebase restriction
(JNDI, 8199177) (CVE-2018-3149).
Improper field access checks (Hotspot, 8199226) (CVE-2018-3169).
Missing endpoint identification algorithm check during TLS session
resumption (JSSE, 8202613) (CVE-2018-3180).
Unrestricted access to scripting engine (Scripting, 8202936)
(CVE-2018-3183).
Infinite loop in RIFF format reader (Sound, 8205361) (CVE-2018-3214).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | java-1.8.0-openjdk | 0 (affected), 1.8.0.191-1.b12.1.mga6 (unaffected) | — |
References
Browse GCVE Records
73,053 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.