CVE-2020-14781

NameCVE-2020-14781
DescriptionVulnerability in the Java SE, Java SE Embedded product of Oracle Java ...
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-2412-1, DSA-4779-1, ELA-300-1, ELA-314-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
openjdk-11 (PTS)buster11.0.9.1+1-1~deb10u2fixed
buster (security)11.0.9+11-1~deb10u1fixed
sid, bullseye11.0.10+9-1fixed
openjdk-15 (PTS)sid15.0.2+7-1fixed
openjdk-7 (PTS)jessie, jessie (lts)7u281-2.6.24-0+deb8u1fixed
openjdk-8 (PTS)jessie, jessie (lts)8u275-b01-1~deb8u1fixed
stretch8u252-b09-1~deb9u1vulnerable
stretch (security)8u275-b01-1~deb9u1fixed
sid8u275-b01-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
openjdk-11source(unstable)11.0.9+11-1
openjdk-11sourcebuster11.0.9+11-1~deb10u1DSA-4779-1
openjdk-15source(unstable)15.0.1+9-1
openjdk-7sourcejessie7u281-2.6.24-0+deb8u1ELA-314-1
openjdk-8source(unstable)8u272-b10-1
openjdk-8sourcejessie8u272-b10-0+deb8u1ELA-300-1
openjdk-8sourcestretch8u272-b10-0+deb9u1DLA-2412-1

Search for package or bug name: Reporting problems