CVE-2016-0687
Published: 21 April 2016
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.
From the Ubuntu Security Team
A vulnerability was discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code.
Priority
CVSS 3 base score: 9.6
Status
Package | Release | Status |
---|---|---|
openjdk-6 Launchpad, Ubuntu, Debian |
precise |
Released
(6b39-1.13.11-0ubuntu0.12.04.1)
|
trusty |
Does not exist
(trusty was released [6b39-1.13.11-0ubuntu0.14.04.1])
|
|
upstream |
Needs triage
|
|
wily |
Released
(6b39-1.13.11-0ubuntu0.15.10.2)
|
|
xenial |
Does not exist
|
|
openjdk-7 Launchpad, Ubuntu, Debian |
precise |
Released
(7u101-2.6.6-0ubuntu0.12.04.1)
|
trusty |
Does not exist
(trusty was released [7u101-2.6.6-0ubuntu0.14.04.1])
|
|
upstream |
Needs triage
|
|
wily |
Released
(7u101-2.6.6-0ubuntu0.15.10.1)
|
|
xenial |
Does not exist
|
|
openjdk-8 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
wily |
Released
(8u91-b14-0ubuntu4~15.10.1)
|
|
xenial |
Released
(8u91-b14-0ubuntu4~16.04.1)
|