Vulnerabilities (CVE)

Vendor filter

Eclipse Subscribe

Product filter

Openj9 Subscribe


3 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-12549 2 Eclipse, Redhat 4 Openj9, Enterprise Linux Desktop, Enterprise Linux Server and 1 more 2019-03-25 7.5
In Eclipse OpenJ9 version 0.11.0, the OpenJ9 JIT compiler may incorrectly omit a null check on the receiver object of an Unsafe call when accelerating it.
CVE-2018-12548 1 Eclipse 1 Openj9 2019-02-20 7.5
In OpenJDK + Eclipse OpenJ9 version 0.11.0 builds, the public jdk.crypto.jniprovider.NativeCrypto class contains public static natives which accept pointer values that are dereferenced in the native code.
CVE-2018-12539 1 Eclipse 1 Openj9 2018-10-18 4.6
In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted...