Oracle Java SE和Oracle Java SE Embedded 安全漏洞

admin
admin
admin
0
文章
0
评论
2024-01-14 02:45:32 YS 来源:ZONE.CI 全球网 0 阅读模式
> Oracle Java SE和Oracle Java SE Embedded 安全漏洞

Oracle Java SE和Oracle Java SE Embedded 安全漏洞

CNNVD-ID编号 CNNVD-202001-654 CVE编号 CVE-2020-2601
发布时间 2020-01-15 更新时间 2021-02-18
漏洞类型 其他 漏洞来源 Ubuntu,Debian,Red Hat,Gentoo
危险等级 中危 威胁类型 远程
厂商 N/A

漏洞介绍

Oracle Java SE和Oracle Java SE Embedded都是美国甲骨文(Oracle)公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle Java SE Embedded是一款针对嵌入式系统的、可移植的应用程序的Java平台。

Oracle Java SE中的Java SE和Java SE Embedded的Security组件存在安全漏洞。攻击者可利用该漏洞未授权访问数据,影响数据的保密性。以下产品及版本受到影响:Oracle Java SE 7u241版本,Java SE 8u231版本,Java SE 11.0.5版本和13.0.1版本;Oracle Java SE Embedded 8u231版本。

漏洞补丁

目前厂商已发布升级了Oracle Java SE和Oracle Java SE Embedded 安全漏洞的补丁,Oracle Java SE和Oracle Java SE Embedded 安全漏洞的补丁获取链接:

https://www.oracle.com/security-alerts/cpujan2020.html

参考网址

来源:DEBIAN

链接:https://www.debian.org/security/2020/dsa-4605

来源:BUGTRAQ

链接:https://seclists.org/bugtraq/2020/Feb/22

来源:BUGTRAQ

链接:https://seclists.org/bugtraq/2020/Jan/24

来源:GENTOO

链接:https://security.gentoo.org/glsa/202101-19

来源:www.oracle.com

链接:https://www.oracle.com/security-alerts/cpujan2020.html

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00060.html

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0196

来源:UBUNTU

链接:https://usn.ubuntu.com/4257-1/

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0231

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00050.html

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0632

来源:CONFIRM

链接:https://security.netapp.com/advisory/ntap-20200122-0003/

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0128

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0541

来源:MLIST

链接:https://lists.debian.org/debian-lts-announce/2020/02/msg00034.html

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0122

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0232

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0202

来源:DEBIAN

链接:https://www.debian.org/security/2020/dsa-4621

来源:REDHAT

链接:https://access.redhat.com/errata/RHSA-2020:0157

来源:lists.debian.org

链接:https://lists.debian.org/debian-security-announce/2020/msg00024.html

来源:access.redhat.com

链接:https://access.redhat.com/errata/RHSA-2020:0157

来源:www.hitachi.co.jp

链接:https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/ hitachi-sec-2020-103/index.html

来源:access.redhat.com

链接:https://access.redhat.com/errata/RHSA-2020:0128

来源:www.suse.com

链接:https://www.suse.com/support/update/announcement/2020/suse-su-20200140-1.html

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-sdk-java-technology-edition-may-affect-ibm-cloud-orchestrator-and-ibm-cloud-orchestrator-enterprise/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/156002/Debian-Security-Advisory-4605-1.html

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/160571/Red-Hat-Security-Advisory-2020-5585-01.html

来源:www.oracle.com

链接:https://www.oracle.com/security-alerts/cpujan2020verbose.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0724/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-sdk-java-technology-edition-quarterly-cpu-oracle-jul-2020-cpu-plus-one-additional-vulnerability-and-oracle-deferred-from-jan-2020/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0215/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/156363/Debian-Security-Advisory-4621-1.html

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-java-sdk-affect-ibm-websphere-cast-iron-solution-app-connect-professional-2/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-cve-2020-2601-may-affect-ibm-sdk-java-technology-edition/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0550/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-java-sdk-and-ibm-java-runtime-for-ibm-i-is-affected-by-cve-2020-2601/

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2020-2601

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affects-websphere-application-server-july-2020-cpu-that-is-bundled-with-ibm-websphere-application-server-patterns/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2748/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-runtime-affect-ibm-security-siteprotector-system-3/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-enterprise-content-management-system-monitor-is-affected-by-a-vulnerability-in-ibm-sdk-java-technology-edition-4/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/155975/Red-Hat-Security-Advisory-2020-0122-01.html

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-security-vulnerabilities-in-ibm-java-sdk-affects-ibm-voice-gateway-3/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-tivoli-monitoring-3/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-ibm-java-sdk-and-ibm-java-runtime-affect-rational-performance-tester/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-tivoli-system-automation-for-multiplatforms-jul-2020-cve-2020-2601/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-watson-machine-learning-service-is-impacted-by-security-vulnerabilities-in-openjdk-11/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-cve-2020-2601-deferred-from-oracle-jan-2020-cpu-2/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4463/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/161088/Gentoo-Linux-Security-Advisory-202101-19.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0185/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0492/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-java/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-may-affect-ibm-sdk-java-technology-edition-used-in-liberty-for-java-for-ibm-cloud-cve-2020-2601/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0383/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2824/

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/Oracle-Java-vulnerabilities-of-January-2020-31331

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-websphere-service-registry-and-repository-and-websphere-service-registry-and-repository-studio-july-2020-cpu-plus-deferred-cve/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-data-risk-manager-is-affected-by-multiple-vulnerabilities-3/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/158824/Red-Hat-Security-Advisory-2020-3387-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0205/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-infosphere-information-server-2/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-cve-2020-2601-may-affect-ibm-sdk-java-technology-edition-that-is-used-by-ibm-workload-scheduler/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0863/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-aix-4/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/156012/Red-Hat-Security-Advisory-2020-0157-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2677/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/156121/Ubuntu-Security-Notice-USN-4257-1.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4416/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-runtime-affects-ibm-cics-tx-on-cloud/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-app-connect-enterprise-v11-is-affected-by-vulnerabilities-in-ibm-java-runtime-cve-2020-2601/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-sdk-java-technology-edition-quarterly-cpu-jan-2020-cve-2020-2601-affects-ibm-tivoli-composite-application-manager-for-transactions-robotic-response-time/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-security-vulnerabilities-in-ibm-java-sdk-july-2020-cpu-plus-cve-2020-2590-and-cve-2020-2601-affect-multiple-ibm-continuous-engineering-products-based-on-ibm-jazz-technology/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.0753/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-rational-developer-for-aix-and-linux-july-2020/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2737/

受影响实体

暂无

信息来源

http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-202001-654

weinxin
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网
安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
安全领域涉猎者-乌云独行地带
ZONE.CI 全球网
评论:0   参与:  4