CVE-2016-3498 in icedtea-web | CVE-2016-3498

Threat Intelligence

0.55% (78^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk IDSNYK-UBUNTU1404-ICEDTEAWEB-621525
published10 Sept 2020
disclosed21 Jul 2016

Report a new vulnerability Found a mistake?

Introduced: 21 Jul 2016

CVE-2016-3498 (opens in a new tab)

Amendment

The Ubuntu security team deemed this advisory irrelevant for Ubuntu:14.04.

NVD Description

Note: Versions mentioned in the description apply only to the upstream icedtea-web package and not the icedtea-web package as distributed by Ubuntu.

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows remote attackers to affect availability via vectors related to JavaFX.

References

http://people.ubuntu.com/~ubuntu-security/cve/CVE-2016-3498
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91956
https://security.netapp.com/advisory/ntap-20160721-0001/
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
https://security.gentoo.org/glsa/201610-08
https://access.redhat.com/errata/RHSA-2016:1475
https://access.redhat.com/errata/RHSA-2016:1476
http://www.securitytracker.com/id/1036365
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html
http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html

CVE-2016-3498 The advisory has been revoked - it doesn't affect any version of package icedtea-web (opens in a new tab)