CVE-2015-4840

EUVD-2015-4857
Unspecified vulnerability in Oracle Java SE 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via unknown vectors related to 2D.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
oraclejdk
1.7.0
oraclejdk
1.8.0
oraclejdk
1.8.0
oraclejre
1.7.0
oraclejre
1.8.0
oraclejre
1.8.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openjdk-8
sid
8u432-b06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openjdk-6
precise
not-affected
trusty
dne
vivid
not-affected
wily
not-affected
openjdk-7
precise
Fixed 7u85-2.6.1-5ubuntu0.12.04.1
released
trusty
Fixed 7u85-2.6.1-5ubuntu0.14.04.1
released
vivid
Fixed 7u85-2.6.1-5ubuntu0.15.04.1
released
wily
Fixed 7u85-2.6.1-5ubuntu0.15.10.1
released
openjdk-8
precise
dne
trusty
dne
vivid
ignored
wily
Fixed 8u66-b17-1
released
References
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html
http://rhn.redhat.com/errata/RHSA-2015-1919.html
http://rhn.redhat.com/errata/RHSA-2015-1920.html
http://rhn.redhat.com/errata/RHSA-2015-1921.html
http://rhn.redhat.com/errata/RHSA-2015-1926.html
http://rhn.redhat.com/errata/RHSA-2015-1927.html
http://rhn.redhat.com/errata/RHSA-2015-2506.html
http://rhn.redhat.com/errata/RHSA-2015-2507.html
http://rhn.redhat.com/errata/RHSA-2015-2509.html
http://www.debian.org/security/2015/dsa-3381
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/77242
http://www.securitytracker.com/id/1033884
http://www.ubuntu.com/usn/USN-2784-1
https://access.redhat.com/errata/RHSA-2016:1430
https://security.gentoo.org/glsa/201603-11
https://security.gentoo.org/glsa/201603-14
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html
http://rhn.redhat.com/errata/RHSA-2015-1919.html
http://rhn.redhat.com/errata/RHSA-2015-1920.html
http://rhn.redhat.com/errata/RHSA-2015-1921.html
http://rhn.redhat.com/errata/RHSA-2015-1926.html
http://rhn.redhat.com/errata/RHSA-2015-1927.html
http://rhn.redhat.com/errata/RHSA-2015-2506.html
http://rhn.redhat.com/errata/RHSA-2015-2507.html
http://rhn.redhat.com/errata/RHSA-2015-2509.html
http://www.debian.org/security/2015/dsa-3381
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/77242
http://www.securitytracker.com/id/1033884
http://www.ubuntu.com/usn/USN-2784-1
https://access.redhat.com/errata/RHSA-2016:1430
https://security.gentoo.org/glsa/201603-11
https://security.gentoo.org/glsa/201603-14