java-1.6.0-openjdk-devel vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the java-1.6.0-openjdk-devel package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Signed to Unsigned Conversion Error	*
M Uncontrolled Memory Allocation	*
M Improper Handling of Length Parameter Inconsistency	*
M Integer Overflow or Wraparound	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
H CVE-2024-21147	*
M CVE-2024-21140	*
M Out-of-bounds Read	*
M CVE-2024-21131	*
M Improper Input Validation	*
M Allocation of Resources Without Limits or Throttling	*
M Deserialization of Untrusted Data	*
M Integer Overflow or Wraparound	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Use of Validation Framework	*
M Integer Overflow or Wraparound	*
M Improper Output Neutralization for Logs	*
M Out-of-bounds Write	*
M Uncontrolled Memory Allocation	*
M Integer Overflow or Wraparound	*
M Information Exposure Through Log Files	*
M Improper Input Validation	*
M Improper Input Validation	*
M Improper Input Validation	*
H Covert Timing Channel	*
H Integer Overflow or Wraparound	*
M Improper Certificate Validation	*
M Deserialization of Untrusted Data	*
L Out-of-bounds Read	*
M Directory Traversal	*
L Improper Input Validation	*
M Improperly Implemented Security Check for Standard	*
M Improper Input Validation	*
L Improper Neutralization of Null Byte or NUL Character	*
M Information Exposure	*
L Improper Neutralization of Null Byte or NUL Character	*
H Improper Enforcement of Message Integrity During Transmission in a Communication Channel	*
L Reliance on File Name or Extension of Externally-Supplied File	*
M Deserialization of Untrusted Data	*
M Allocation of Resources Without Limits or Throttling	*
M Resource Exhaustion	*
L Use of Insufficiently Random Values	*
L Integer Coercion Error	*
H Integer Coercion Error	*
M Improper Access Control	*
M Resource Leak	*
M Improper Use of Validation Framework	*
H Incorrect Behavior Order: Early Validation	*
M Integer Underflow	*
M Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	*
M Resource Exhaustion	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Improper Authorization	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Use of Validation Framework	*
M Uncaught Exception	*
M Improper Cross-boundary Removal of Sensitive Data	*
M Cryptographic Issues	*
H Arbitrary Code Injection	<1:1.6.0.0-3.1.13.1.el6_5
M CVE-2013-5851	*
H CVE-2013-5809	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5780	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5782	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5850	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5783	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5825	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5842	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5829	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5784	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5820	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5797	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5840	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5774	<1:1.6.0.0-1.65.1.11.14.el6_4
H Out-of-bounds Read	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5823	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5803	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5772	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5804	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5817	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5849	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5802	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5814	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-3829	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5790	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-5830	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2013-2463	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2457	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2465	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2472	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2473	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2452	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2461	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2456	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2469	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2446	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2412	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2471	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2453	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2450	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2445	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H Integer Overflow or Wraparound	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2447	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2470	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2407	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2444	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2443	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2448	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-1571	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-1500	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2455	<1:1.6.0.0-1.62.1.11.11.90.el6_4
H CVE-2013-2426	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-1558	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-1537	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-1518	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2429	<1:1.6.0.0-1.61.1.11.11.el6_4
H Arbitrary Code Injection	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2422	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-1557	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2431	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2417	<1:1.6.0.0-1.61.1.11.11.el6_4
H Incorrect Permission Assignment for Critical Resource	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2430	<1:1.6.0.0-1.61.1.11.11.el6_4
H Arbitrary Code Injection	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2424	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2421	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2420	<1:1.6.0.0-1.61.1.11.11.el6_4
C Integer Overflow or Wraparound	<1:1.6.0.0-1.57.1.11.9.el6_4
C Out-of-Bounds	<1:1.6.0.0-1.57.1.11.9.el6_4
C Cryptographic Issues	<1:1.6.0.0-1.56.1.11.8.el6_3
C CVE-2013-1486	<1:1.6.0.0-1.56.1.11.8.el6_3
H CVE-2016-5554	<1:1.6.0.41-1.13.13.1.el6_8
C CVE-2013-0428	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0435	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-1478	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0445	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-1476	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0442	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0429	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0426	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0432	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0434	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0427	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-1481	*
C CVE-2013-1480	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2012-3213	*
C CVE-2013-0450	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0441	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0425	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0440	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0433	<1:1.6.0.0-1.54.1.11.6.el6_3
C CVE-2013-0443	<1:1.6.0.0-1.54.1.11.6.el6_3
M CVE-2013-0409	*
C Cross-site Scripting (XSS)	<1:1.6.0.0-1.54.1.11.6.el6_3
H Access of Resource Using Incompatible Type ('Type Confusion')	<1:1.6.0.41-1.13.13.1.el6_8
H Use of a Broken or Risky Cryptographic Algorithm	<1:1.6.0.41-1.13.13.1.el6_8
H Cleartext Transmission of Sensitive Information	<1:1.6.0.41-1.13.13.1.el6_8
H Improper Input Validation	<1:1.6.0.41-1.13.13.1.el6_8
C CVE-2013-1475	<1:1.6.0.0-1.54.1.11.6.el6_3
H Allocation of Resources Without Limits or Throttling	<1:1.6.0.40-1.13.12.6.el6_8
H Allocation of Resources Without Limits or Throttling	<1:1.6.0.40-1.13.12.6.el6_8
H CVE-2016-3458	<1:1.6.0.40-1.13.12.6.el6_8
H Integer Overflow or Wraparound	<1:1.6.0.40-1.13.12.6.el6_8
H CVE-2016-3606	<1:1.6.0.40-1.13.12.6.el6_8
C CVE-2012-5073	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5081	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5069	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5079	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5071	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5075	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5086	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5072	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5089	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-4416	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5068	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-3216	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5085	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5084	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2012-5077	<1:1.6.0.0-1.50.1.11.5.el6_3
C CVE-2016-3427	<1:1.6.0.39-1.13.11.0.el6_7
C CVE-2016-0687	<1:1.6.0.39-1.13.11.0.el6_7
C CVE-2016-3425	<1:1.6.0.39-1.13.11.0.el6_7
C CVE-2016-0686	<1:1.6.0.39-1.13.11.0.el6_7
C CVE-2016-0695	<1:1.6.0.39-1.13.11.0.el6_7
C CVE-2012-1682	<1:1.6.0.0-1.49.1.11.4.el6_3
C CVE-2012-0547	<1:1.6.0.0-1.49.1.11.4.el6_3
C Loop with Unreachable Exit Condition ('Infinite Loop')	<1:1.6.0.0-1.48.1.11.3.el6_2
H Incorrect Conversion between Numeric Types	<1:1.6.0.38-1.13.10.0.el6_7
H CVE-2016-0402	<1:1.6.0.38-1.13.10.0.el6_7
H CVE-2016-0466	<1:1.6.0.38-1.13.10.0.el6_7
H Out-of-bounds Write	<1:1.6.0.38-1.13.10.0.el6_7
H Information Exposure Through Log Files	<1:1.6.0.38-1.13.10.0.el6_7
C CVE-2012-1723	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1719	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1716	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1718	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1725	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1711	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2012-1713	<1:1.6.0.0-1.48.1.11.3.el6_2
C Incorrect Permission Assignment for Critical Resource	<1:1.6.0.0-1.48.1.11.3.el6_2
C CVE-2011-3571	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0505	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0497	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0503	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0506	<1:1.6.0.0-1.43.1.10.6.el6_2
C Improper Input Validation	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0502	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2012-0507	<1:1.6.0.0-1.43.1.10.6.el6_2
C CVE-2011-3563	<1:1.6.0.0-1.43.1.10.6.el6_2
C Off-by-one Error	<1:1.6.0.0-1.43.1.10.6.el6_2
H CVE-2015-4844	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4883	<1:1.6.0.37-1.13.9.4.el6_7
H Information Exposure	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4882	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4911	<1:1.6.0.37-1.13.9.4.el6_7
H Algorithmic Complexity	<1:1.6.0.37-1.13.9.4.el6_7
H Information Exposure	<1:1.6.0.37-1.13.9.4.el6_7
H Incorrect Conversion between Numeric Types	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4835	<1:1.6.0.37-1.13.9.4.el6_7
H Allocation of Resources Without Limits or Throttling	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4860	<1:1.6.0.37-1.13.9.4.el6_7
H Improper Initialization	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4881	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4903	<1:1.6.0.37-1.13.9.4.el6_7
H Improper Input Validation	<1:1.6.0.37-1.13.9.4.el6_7
H CVE-2015-4872	<1:1.6.0.37-1.13.9.4.el6_7
C CVE-2011-3560	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3557	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3556	<1:1.6.0.0-1.40.1.9.10.el6_1
C Improper Input Validation	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3552	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3558	<1:1.6.0.0-1.40.1.9.10.el6_1
C Integer Overflow or Wraparound	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3553	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3544	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3547	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3548	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3521	<1:1.6.0.0-1.40.1.9.10.el6_1
C CVE-2011-3554	<1:1.6.0.0-1.40.1.9.10.el6_1
H Improper Certificate Validation	<1:1.6.0.36-1.13.8.1.el6_7
H Out-of-bounds Write	<1:1.6.0.36-1.13.8.1.el6_7
H CVE-2015-2621	<1:1.6.0.36-1.13.8.1.el6_7
H Improper Check for Certificate Revocation	<1:1.6.0.36-1.13.8.1.el6_7
H Access of Resource Using Incompatible Type ('Type Confusion')	<1:1.6.0.36-1.13.8.1.el6_7
H CVE-2015-4733	<1:1.6.0.36-1.13.8.1.el6_7
H Missing Release of Resource after Effective Lifetime	<1:1.6.0.36-1.13.8.1.el6_7
H Covert Timing Channel	<1:1.6.0.36-1.13.8.1.el6_7
H CVE-2015-2590	<1:1.6.0.36-1.13.8.1.el6_7
H Integer Overflow or Wraparound	<1:1.6.0.36-1.13.8.1.el6_7
H Unsynchronized Access to Shared Data in a Multithreaded Context	<1:1.6.0.36-1.13.8.1.el6_7
H CVE-2015-4731	<1:1.6.0.36-1.13.8.1.el6_7
C CVE-2011-0867	<1:1.6.0.0-1.39.1.9.8.el6_1
C CVE-2011-0868	<1:1.6.0.0-1.39.1.9.8.el6_1
C CVE-2011-0869	<1:1.6.0.0-1.39.1.9.8.el6_1
H Use of a Broken or Risky Cryptographic Algorithm	<1:1.6.0.36-1.13.8.1.el6_7
C CVE-2011-0865	<1:1.6.0.0-1.39.1.9.8.el6_1
C CVE-2011-0871	<1:1.6.0.0-1.39.1.9.8.el6_1
C Integer Overflow or Wraparound	<1:1.6.0.0-1.39.1.9.8.el6_1
C CVE-2011-0864	<1:1.6.0.0-1.39.1.9.8.el6_1
H Use of a Broken or Risky Cryptographic Algorithm	<1:1.6.0.36-1.13.8.1.el6_7
H Directory Traversal	<1:1.6.0.35-1.13.7.1.el6_6
H Uncaught Exception	<1:1.6.0.35-1.13.7.1.el6_6
H Off-by-one Error	<1:1.6.0.35-1.13.7.1.el6_6
H Directory Traversal	<1:1.6.0.35-1.13.7.1.el6_6
H CVE-2015-0460	<1:1.6.0.35-1.13.7.1.el6_6
H CVE-2015-0477	<1:1.6.0.35-1.13.7.1.el6_6
H Improperly Implemented Security Check for Standard	<1:1.6.0.35-1.13.7.1.el6_6
H CVE-2010-4469	<1:1.6.0.0-1.39.b17.el6_0
H CVE-2010-4465	<1:1.6.0.0-1.39.b17.el6_0
H CVE-2010-4448	<1:1.6.0.0-1.39.b17.el6_0
H CVE-2010-4470	<1:1.6.0.0-1.39.b17.el6_0
H CVE-2010-4450	<1:1.6.0.0-1.39.b17.el6_0
H CVE-2010-4472	<1:1.6.0.0-1.39.b17.el6_0
M CVE-2010-4476	<1:1.6.0.0-1.36.b17.el6_0
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2014-6593	<1:1.6.0.34-1.13.6.1.el6_6
H Out-of-bounds Read	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2015-0408	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2015-0407	<1:1.6.0.34-1.13.6.1.el6_6
H NULL Pointer Dereference	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2015-0395	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2014-6601	<1:1.6.0.34-1.13.6.1.el6_6
H Insecure Temporary File	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2015-0412	<1:1.6.0.34-1.13.6.1.el6_6
H Out-of-bounds Read	<1:1.6.0.34-1.13.6.1.el6_6
H Not Failing Securely ('Failing Open')	<1:1.6.0.34-1.13.6.1.el6_6
H CVE-2010-3561	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3567	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2014-6506	<1:1.6.0.33-1.13.5.0.el6_6
H Insufficient Verification of Data Authenticity	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2010-3551	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2014-6504	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6502	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6511	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2010-3553	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2014-6517	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6519	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6531	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6457	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2014-6558	<1:1.6.0.33-1.13.5.0.el6_6
H CVE-2010-3562	<1:1.6.0.0-1.31.b17.el6_0
H Improper Input Validation	<1:1.6.0.0-1.65.1.11.14.el6_4
H CVE-2010-3573	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3569	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3568	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3549	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3574	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3564	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3565	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3548	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3541	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3554	<1:1.6.0.0-1.31.b17.el6_0
H Man-in-the-Middle (MitM)	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2010-3557	<1:1.6.0.0-1.31.b17.el6_0
H CVE-2014-4252	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4216	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4209	<1:1.6.0.0-6.1.13.4.el6_5
H Use of Externally-Controlled Format String	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4263	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4218	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4262	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-4219	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2014-0428	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0373	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-4244	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2013-5878	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-4266	<1:1.6.0.0-6.1.13.4.el6_5
H CVE-2013-5884	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2013-5896	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0411	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0416	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0368	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2013-5907	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0376	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0423	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-0422	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2013-5910	<1:1.6.0.0-3.1.13.1.el6_5
H CVE-2014-2414	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2421	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0453	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0452	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0460	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0429	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2397	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0461	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2398	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2412	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0457	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0458	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2427	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0446	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2423	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-2403	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0456	<1:1.6.0.0-5.1.13.3.el6_5
H CVE-2014-0451	<1:1.6.0.0-5.1.13.3.el6_5
H Insecure Temporary File	<1:1.6.0.0-5.1.13.3.el6_5
M Cryptographic Issues	*
M Information Exposure	*
M Incorrect Authorization	*
H CVE-2013-2419	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2384	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-2383	<1:1.6.0.0-1.61.1.11.11.el6_4
H CVE-2013-1569	<1:1.6.0.0-1.61.1.11.11.el6_4

Vulnerability

Vulnerable Version

Signed to Unsigned Conversion Error

Uncontrolled Memory Allocation

Improper Handling of Length Parameter Inconsistency

Integer Overflow or Wraparound

Loop with Unreachable Exit Condition ('Infinite Loop')

Improper Input Validation

Allocation of Resources Without Limits or Throttling

Deserialization of Untrusted Data

Integer Overflow or Wraparound

Allocation of Resources Without Limits or Throttling

Improper Use of Validation Framework

Integer Overflow or Wraparound

Improper Output Neutralization for Logs

Out-of-bounds Write

Uncontrolled Memory Allocation

Integer Overflow or Wraparound

Information Exposure Through Log Files

Improper Input Validation

Covert Timing Channel

Integer Overflow or Wraparound

Improper Certificate Validation

Deserialization of Untrusted Data

Out-of-bounds Read

Directory Traversal

Improper Input Validation

Improperly Implemented Security Check for Standard

Improper Input Validation

Improper Neutralization of Null Byte or NUL Character

Information Exposure

Improper Neutralization of Null Byte or NUL Character

Improper Enforcement of Message Integrity During Transmission in a Communication Channel

Reliance on File Name or Extension of Externally-Supplied File

Deserialization of Untrusted Data

Allocation of Resources Without Limits or Throttling

Resource Exhaustion

Use of Insufficiently Random Values

Integer Coercion Error

Improper Access Control

Resource Leak

Improper Use of Validation Framework

Incorrect Behavior Order: Early Validation

Integer Underflow

Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

Resource Exhaustion

Loop with Unreachable Exit Condition ('Infinite Loop')

Improper Authorization

Allocation of Resources Without Limits or Throttling

Improper Use of Validation Framework

Uncaught Exception

Improper Cross-boundary Removal of Sensitive Data

Cryptographic Issues

Arbitrary Code Injection

<1:1.6.0.0-3.1.13.1.el6_5

CVE-2013-5851

CVE-2013-5809

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5780

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5782

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5850

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5783

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5825

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5842

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5829

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5784

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5820

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5797

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5840

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5774

<1:1.6.0.0-1.65.1.11.14.el6_4

Out-of-bounds Read

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5823

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5803

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5772

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5804

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5817

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5849

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5802

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5814

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-3829

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5790

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-5830

<1:1.6.0.0-1.65.1.11.14.el6_4

CVE-2013-2463