Upgrade Amazon-Linux:2018.03 java-1.7.0-openjdk-javadoc to version 1:1.7.0.251-2.6.21.0.82.amzn1 or higher. This issue was patched in ALAS-2020-1354 .

jbcs-httpd24-apache-commons-daemon-jsvc vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jbcs-httpd24-apache-commons-daemon-jsvc package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Directory Traversal	<1:1.1.0-3.redhat_2.jbcs.el7
H Deserialization of Untrusted Data	<1:1.0.15-17.redhat_2.jbcs.el7
M Incorrect Calculation	<1:1.1.0-1.redhat_2.jbcs.el7
H Improper Access Control	<1:1.0.15-17.redhat_2.jbcs.el7
H Resource Exhaustion	<1:1.1.0-3.redhat_2.jbcs.el7
H Improper Input Validation	<1:1.1.0-3.redhat_2.jbcs.el7
H NULL Pointer Dereference	<1:1.1.0-3.redhat_2.jbcs.el7
H Improper Input Validation	<1:1.1.0-3.redhat_2.jbcs.el7
M Information Exposure	<1:1.1.0-1.redhat_2.jbcs.el7
M Unchecked Error Condition	<1:1.1.0-1.redhat_2.jbcs.el7
M Incorrect Calculation	<1:1.1.0-1.redhat_2.jbcs.el7
M Integer Overflow or Wraparound	<1:1.1.0-1.redhat_2.jbcs.el7
H Error Handling	<1:1.0.15-17.redhat_2.jbcs.el7
H HTTP Request Smuggling	<1:1.0.15-17.redhat_2.jbcs.el7
M Integer Overflow or Wraparound	<1:1.1.0-1.redhat_2.jbcs.el7
H Improper Input Validation	<1:1.0.15-17.redhat_2.jbcs.el7
M Out-of-bounds Read	<1:1.1.0-1.redhat_2.jbcs.el7
H Improper Access Control	<1:1.0.15-17.redhat_2.jbcs.el7
M Unchecked Error Condition	<1:1.1.0-1.redhat_2.jbcs.el7
M Integer Overflow or Wraparound	<1:1.1.0-1.redhat_2.jbcs.el7
H Out-of-bounds Read	<1:1.1.0-3.redhat_2.jbcs.el7
H Authentication Bypass by Primary Weakness	<1:1.1.0-3.redhat_2.jbcs.el7
H Out-of-bounds Read	<1:1.1.0-3.redhat_2.jbcs.el7
H Uncontrolled Recursion	<1:1.1.0-3.redhat_2.jbcs.el7
H Out-of-bounds Write	<1:1.1.0-3.redhat_2.jbcs.el7
H Out-of-bounds Write	<1:1.1.0-3.redhat_2.jbcs.el7
H Improper Access Control	<1:1.0.15-17.redhat_2.jbcs.el7
H Security Features	<1:1.0.15-17.redhat_2.jbcs.el7
H Information Exposure	<1:1.0.15-17.redhat_2.jbcs.el7
H Security Features	<1:1.0.15-17.redhat_2.jbcs.el7
M HTTP Response Splitting	<1:1.1.0-1.redhat_2.jbcs.el7
H Access Restriction Bypass	<1:1.0.15-17.redhat_2.jbcs.el7
H Out-of-Bounds	<1:1.1.0-3.redhat_2.jbcs.el7

Vulnerability

Vulnerable Version

Directory Traversal

<1:1.1.0-3.redhat_2.jbcs.el7

Deserialization of Untrusted Data

<1:1.0.15-17.redhat_2.jbcs.el7

Incorrect Calculation

<1:1.1.0-1.redhat_2.jbcs.el7

Improper Access Control

<1:1.0.15-17.redhat_2.jbcs.el7

Resource Exhaustion

<1:1.1.0-3.redhat_2.jbcs.el7