NULL Pointer Dereference Affecting java-17-openjdk-fastdebug package, versions *
Threat Intelligence
EPSS
0.05% (20th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-CENTOS8-JAVA17OPENJDKFASTDEBUG-3116334
- published 15 Nov 2022
- disclosed 4 Nov 2022
Introduced: 4 Nov 2022
CVE-2022-3857 Open this link in a new tabHow to fix?
There is no fixed version for Centos:8 java-17-openjdk-fastdebug.
NVD Description
Note: Versions mentioned in the description apply only to the upstream java-17-openjdk-fastdebug package and not the java-17-openjdk-fastdebug package as distributed by Centos.
See How to fix? for Centos:8 relevant fixed versions and status.
A flaw was found in libpng 1.6.38. A crafted PNG image can lead to a segmentation fault and denial of service in png_setup_paeth_row() function.
CVSS Scores
version 3.1