https://access.redhat.com/security/cve/CVE-2022-34169
https://access.redhat.com/errata/RHSA-2022:5709
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/
http://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.html
http://www.openwall.com/lists/oss-security/2022/07/19/5
http://www.openwall.com/lists/oss-security/2022/07/19/6
http://www.openwall.com/lists/oss-security/2022/07/20/2
http://www.openwall.com/lists/oss-security/2022/07/20/3
http://www.openwall.com/lists/oss-security/2022/10/18/2
http://www.openwall.com/lists/oss-security/2022/11/04/8
http://www.openwall.com/lists/oss-security/2022/11/07/2
https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kyw
https://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8
https://lists.debian.org/debian-lts-announce/2022/10/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/
https://security.gentoo.org/glsa/202401-25
https://security.netapp.com/advisory/ntap-20220729-0009/
https://security.netapp.com/advisory/ntap-20240621-0006/
https://www.debian.org/security/2022/dsa-5188
https://www.debian.org/security/2022/dsa-5192
https://www.debian.org/security/2022/dsa-5256
https://www.oracle.com/security-alerts/cpujul2022.html
https://github.com/flowerwind/AutoGenerateXalanPayload

Vulnerability	Vulnerable Version
M Out-of-bounds Read	*
M Out-of-bounds Read	*
H Buffer Overflow	*
H Out-of-bounds Read	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
H Heap-based Buffer Overflow	*
H Out-of-bounds Read	*
M CVE-2025-53066	<1:1.8.0.472.b08-1.el9
M Inappropriate Encoding for Output Context	<1:1.8.0.472.b08-1.el9
H Heap-based Buffer Overflow	<1:1.8.0.462.b08-3.el9
H Missing Required Cryptographic Step	<1:1.8.0.462.b08-3.el9
H Heap-based Buffer Overflow	<1:1.8.0.462.b08-3.el9
H CVE-2025-30761	<1:1.8.0.462.b08-3.el9
M Heap-based Buffer Overflow	<1:1.8.0.452.b09-2.el9
M Buffer Overflow	<1:1.8.0.452.b09-2.el9
M Information Exposure	<1:1.8.0.452.b09-2.el9
M Signed to Unsigned Conversion Error	<1:1.8.0.432.b06-2.el9
M Uncontrolled Memory Allocation	<1:1.8.0.432.b06-2.el9
M Integer Overflow or Wraparound	<1:1.8.0.432.b06-2.el9
M Improper Handling of Length Parameter Inconsistency	<1:1.8.0.432.b06-2.el9
M Signed to Unsigned Conversion Error	*
H CVE-2024-21140	<1:1.8.0.422.b05-2.el9
H Improper Input Validation	<1:1.8.0.422.b05-2.el9
H CVE-2024-21147	<1:1.8.0.422.b05-2.el9
H Out-of-bounds Read	<1:1.8.0.422.b05-2.el9
H CVE-2024-21131	<1:1.8.0.422.b05-2.el9
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1:1.8.0.422.b05-2.el9
M Improper Output Neutralization for Logs	<1:1.8.0.412.b08-2.el9
M Integer Overflow or Wraparound	<1:1.8.0.412.b08-2.el9
M Out-of-bounds Write	<1:1.8.0.412.b08-2.el9
M Uncontrolled Memory Allocation	<1:1.8.0.412.b08-2.el9
H Improper Input Validation	<1:1.8.0.402.b06-2.el9
H Improper Input Validation	<1:1.8.0.402.b06-2.el9
H Improper Input Validation	<1:1.8.0.402.b06-2.el9
H Information Exposure Through Log Files	<1:1.8.0.402.b06-2.el9
H Covert Timing Channel	<1:1.8.0.402.b06-2.el9
H Integer Overflow or Wraparound	<1:1.8.0.402.b06-2.el9
M Out-of-Bounds	<1:1.8.0.432.b06-2.el9
M Improper Certificate Validation	<1:1.8.0.392.b08-3.el9
M Deserialization of Untrusted Data	<1:1.8.0.392.b08-3.el9
M Resource Exhaustion	<1:1.8.0.392.b08-3.el9
M Out-of-bounds Read	<1:1.8.0.382.b05-2.el9
M Directory Traversal	<1:1.8.0.382.b05-2.el9
H Improper Input Validation	<1:1.8.0.372.b07-1.el9_1
H Improperly Implemented Security Check for Standard	<1:1.8.0.372.b07-1.el9_1
H Improper Input Validation	<1:1.8.0.372.b07-1.el9_1
H Improper Neutralization of Null Byte or NUL Character	<1:1.8.0.372.b07-1.el9_1
H Information Exposure	<1:1.8.0.372.b07-1.el9_1
H Improper Neutralization of Null Byte or NUL Character	<1:1.8.0.372.b07-1.el9_1
H Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<1:1.8.0.372.b07-1.el9_1
M Reliance on File Name or Extension of Externally-Supplied File	<1:1.8.0.362.b09-2.el9_1
M Deserialization of Untrusted Data	<1:1.8.0.362.b09-2.el9_1
L NULL Pointer Dereference	*
M Allocation of Resources Without Limits or Throttling	<1:1.8.0.352.b08-2.el9_0
M Resource Exhaustion	<1:1.8.0.352.b08-2.el9_0
M Use of Insufficiently Random Values	<1:1.8.0.352.b08-2.el9_0
M Integer Coercion Error	<1:1.8.0.352.b08-2.el9_0
H Integer Coercion Error	<1:1.8.0.342.b07-1.el9_0
H Improper Access Control	<1:1.8.0.342.b07-1.el9_0
H Resource Leak	<1:1.8.0.342.b07-1.el9_0
H Improper Use of Validation Framework	<1:1.8.0.332.b09-1.el9_0
H Incorrect Behavior Order: Early Validation	<1:1.8.0.332.b09-1.el9_0
H Integer Underflow	<1:1.8.0.332.b09-1.el9_0
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<1:1.8.0.332.b09-1.el9_0
H Resource Exhaustion	<1:1.8.0.332.b09-1.el9_0

java-1.8.0-openjdk-headless-fastdebug vulnerabilities

Direct Vulnerabilities

Fix vulnerabilities automatically