VDB

GCVE-VVD-MAGEIA-2019-241

GCVE-VVD-MAGEIA-2019-241
Advisory Published
Vulnetix · Advisory published December 19, 2019
The updated packages fix several bugs and some security issues: Side-channel attack risks in Elliptic Curve (EC) cryptography. (CVE-2019-2745) Insufficient checks of suppressed exceptions in deserialization. (CVE-2019-2762) Unbounded memory allocation during deserialization in Collections. (CVE-2019-2769) Insufficient restriction of privileges in AccessController. (CVE-2019-2786) Missing URL format validation. (CVE-2019-2816) Missing array bounds check in crypto providers. (CVE-2019-2842)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiajava-1.8.0-openjdk0 (affected), 1.8.0.222-1.b10.1.mga7 (unaffected), 0 (affected), 1.8.0.222-1.b10.1.mga7 (unaffected)
Mageiagnupg20 (affected), 2.2.19-1.mga7 (unaffected)
Mageiajava-1.8.0-openjdk0 (affected), 1.8.0.222-1.b10.1.mga6 (unaffected), 0 (affected), 1.8.0.222-1.b10.1.mga6 (unaffected)

References

Updated java-1.8.0-openjdk packages fix security vulnerabilities
advisory
Updated java-1.8.0-openjdk packages fix security vulnerabilities
issue
Updated java-1.8.0-openjdk packages fix security vulnerabilities
issue
Updated java-1.8.0-openjdk packages fix security vulnerabilities
advisory
Updated gnupg2 packages fix regression introduced in 2.2.18
advisory
Updated gnupg2 packages fix regression introduced in 2.2.18
issue
Updated gnupg2 packages fix regression introduced in 2.2.18
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›