Mageia: 2019-0071 Moderate: Java Management Console Multiple Threats

mageia

February 13, 2019

Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server)

Summary

Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). The supported version that is affected is Java Advanced Management Console: 2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java Advanced Management Console. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java Advanced Management Console, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java Advanced Management Console accessible data as well as unauthorized read access to a subset of Java Advanced Management Console accessible data. (CVE-2019-2540)
An issue was discovered in libjpeg 9a. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted fil...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=24293

- https://www.oracle.com/security-alerts/cpujan2019.html

- https://www.cve.org/CVERecord?id=CVE-2018-11212

- https://www.cve.org/CVERecord?id=CVE-2019-2422

- https://www.cve.org/CVERecord?id=CVE-2019-2426

- https://www.cve.org/CVERecord?id=CVE-2019-2449

- https://www.cve.org/CVERecord?id=CVE-2019-2540

Topics Covered

security advisory denial of service unauthorized access mageia java management console

Resolution

SRPMS

- 6/core/java-1.8.0-openjdk-1.8.0.201-1.b09.2.mga6

Severity

important

Lowest

Low

Medium

High

Critical

Publication date: 13 Feb 2019

URL: https://advisories.mageia.org/MGASA-2019-0071.html

Type: security

CVE: CVE-2018-11212, CVE-2019-2422, CVE-2019-2426, CVE-2019-2449, CVE-2019-2540

Topics Covered

security advisory denial of service unauthorized access mageia java management console

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2019-0071 Moderate: Java Management Console Multiple Threats

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2019-0071 Moderate: Java Management Console Multiple Threats

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!