Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

41 – 48 of 48 results


CVE-2023-21939

Medium priority

Some fixes available 24 of 27

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM...

11 affected packages

openjdk, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk Not in release Not in release Not in release Not in release Ignored
openjdk-13 Not in release Not in release Ignored Not in release Not in release
openjdk-16 Not in release Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Fixed Not in release
openjdk-18 Not in release Ignored Not in release Not in release Not in release
openjdk-19 Not in release Ignored Not in release Not in release Not in release
openjdk-20 Not in release Not in release Not in release Not in release Not in release
openjdk-21 Not affected Not affected Not affected Not in release Not in release
openjdk-8 Not affected Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed Not in release
Show all 11 packages Show less packages

CVE-2023-21938

Medium priority

Some fixes available 24 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle...

11 affected packages

openjdk, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk Not in release Not in release Not in release Not in release Ignored
openjdk-13 Not in release Not in release Ignored Not in release Not in release
openjdk-16 Not in release Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Fixed Not in release
openjdk-18 Not in release Ignored Not in release Not in release Not in release
openjdk-19 Not in release Ignored Not in release Not in release Not in release
openjdk-20 Not in release Not in release Not in release Not in release Not in release
openjdk-21 Not affected Not affected Not affected Not in release Not in release
openjdk-8 Not affected Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed Not in release
Show all 11 packages Show less packages

CVE-2023-21937

Medium priority

Some fixes available 24 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle...

11 affected packages

openjdk, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk Not in release Not in release Not in release Not in release Ignored
openjdk-13 Not in release Not in release Ignored Not in release Not in release
openjdk-16 Not in release Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Fixed Not in release
openjdk-18 Not in release Ignored Not in release Not in release Not in release
openjdk-19 Not in release Ignored Not in release Not in release Not in release
openjdk-20 Not in release Not in release Not in release Not in release Not in release
openjdk-21 Not affected Not affected Not affected Not in release Not in release
openjdk-8 Not affected Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed Not in release
Show all 11 packages Show less packages

CVE-2023-21930

Medium priority

Some fixes available 24 of 26

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM...

11 affected packages

openjdk, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
openjdk Not in release Not in release Not in release Not in release Ignored
openjdk-13 Not in release Not in release Ignored Not in release Not in release
openjdk-16 Not in release Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Fixed Not in release
openjdk-18 Not in release Ignored Not in release Not in release Not in release
openjdk-19 Not in release Ignored Not in release Not in release Not in release
openjdk-20 Not in release Not in release Not in release Not in release Not in release
openjdk-21 Not affected Not affected Not affected Not in release Not in release
openjdk-8 Not affected Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed Not in release
Show all 11 packages Show less packages

CVE-2023-25193

Low priority

Some fixes available 15 of 24

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.

13 affected packages

harfbuzz, openjdk, openjdk-13, openjdk-16, openjdk-17...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
harfbuzz Not affected Vulnerable Vulnerable Needs evaluation Not affected
openjdk Not in release Not in release Not in release Ignored Ignored
openjdk-13 Not in release Not in release Ignored Not in release Not in release
openjdk-16 Not in release Not in release Ignored Not in release Not in release
openjdk-17 Not affected Fixed Fixed Fixed Not in release
openjdk-18 Not in release Ignored Not in release Not in release Not in release
openjdk-19 Not in release Ignored Not in release Not in release Not in release
openjdk-20 Not in release Not in release Not in release Not in release Not in release
openjdk-21 Not affected Fixed Fixed Not in release Not in release
openjdk-22 Not in release Not in release Not in release Not in release
openjdk-8 Not affected Not affected Not affected Not affected Not affected
openjdk-9 Not in release Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Fixed Not in release
Show all 13 packages Show less packages

CVE-2023-21843

Low priority

Some fixes available 17 of 19

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf, 11.0.17, 17.0.5, 19.0.1; Oracle...

10 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
icedtea-web Not affected Not affected Not affected Not affected
openjdk-13 Not in release Ignored Not in release Not in release
openjdk-16 Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Not in release
openjdk-18 Ignored Not in release Not in release Not in release
openjdk-19 Fixed Not in release Not in release Not in release
openjdk-21 Not affected Needs evaluation Not in release Ignored
openjdk-8 Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Not in release
Show all 10 packages Show less packages

CVE-2023-21835

Medium priority

Some fixes available 13 of 15

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise...

10 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
icedtea-web Not affected Not affected Not affected Not affected
openjdk-13 Not in release Ignored Not in release Not in release
openjdk-16 Not in release Ignored Not in release Not in release
openjdk-17 Fixed Fixed Fixed Not in release
openjdk-18 Ignored Not in release Not in release Not in release
openjdk-19 Fixed Not in release Not in release Not in release
openjdk-21 Not affected Needs evaluation Not in release Not in release
openjdk-8 Not affected Not affected Not affected Not affected
openjdk-9 Not in release Not in release Not in release Ignored
openjdk-lts Fixed Fixed Fixed Not in release
Show all 10 packages Show less packages

CVE-2023-21830

Medium priority

Some fixes available 5 of 6

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise...

10 affected packages

icedtea-web, openjdk-13, openjdk-16, openjdk-17, openjdk-18...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
icedtea-web Not affected Not affected Not affected Not affected
openjdk-13 Not in release Not affected Not in release Not in release
openjdk-16 Not in release Not affected Not in release Not in release
openjdk-17 Not affected Not affected Not affected Not in release
openjdk-18 Not affected Not in release Not in release Not in release
openjdk-19 Not affected Not in release Not in release Not in release
openjdk-21 Not affected Needs evaluation Not in release Ignored
openjdk-8 Fixed Fixed Fixed Fixed
openjdk-9 Not in release Not in release Not in release Not affected
openjdk-lts Not affected Not affected Not affected Not in release
Show all 10 packages Show less packages