Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
17 Jan 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 May 2023, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan. |
27 Apr 2023, 17:36
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:azul:zulu:7.56:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:8.63:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:11.57:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:8.64:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:13.49:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:17.35:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:18.32:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:7.55:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:6.49:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:* |
cpe:2.3:a:azul:zulu:6.47:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:15.40:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:18.30:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:11.56:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:17.34:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:8.62:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:7.54:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:13.48:*:*:*:*:*:*:* |
29 Nov 2022, 02:07
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5256 - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2022/10/msg00024.html - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/11/07/2 - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/10/18/2 - Mailing List, Patch, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/11/04/8 - Mailing List, Third Party Advisory |
07 Nov 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Nov 2022, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Oct 2022, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Oct 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Aug 2022, 15:03
Type | Values Removed | Values Added |
---|---|---|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/ - Mailing List, Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.html - Third Party Advisory, VDB Entry | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
26 Aug 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Aug 2022, 15:10
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:azul:zulu:13.49:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:7.55:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:15.41:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:6.49:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:17.35:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:11.57:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:18.32:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:8.63:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:7.56:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:8.64:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:* cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:* |
08 Aug 2022, 15:09
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:* cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:* cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update322:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update332:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:* cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:* cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/ - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20220729-0009/ - Third Party Advisory |
03 Aug 2022, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Jul 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Jul 2022, 14:26
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5188 - Third Party Advisory | |
References | (MISC) https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kyw - Issue Tracking, Mailing List, Vendor Advisory | |
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5192 - Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/07/20/2 - Mailing List, Third Party Advisory | |
References | (MISC) https://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8 - Issue Tracking, Mailing List, Vendor Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/07/19/6 - Mailing List, Third Party Advisory | |
References | (MISC) https://www.oracle.com/security-alerts/cpujul2022.html - Patch, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/07/19/5 - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/07/20/3 - Mailing List, Patch, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:oracle:jdk:17.0.3.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:jdk:18.0.1.1:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:graalvm:22.1.0:*:*:*:enterprise:*:*:* cpe:2.3:a:oracle:jre:17.0.3.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:jdk:11.0.15.1:*:*:*:*:*:*:* cpe:2.3:a:apache:xalan-java:*:*:*:*:*:*:*:* cpe:2.3:a:oracle:graalvm:20.3.6:*:*:*:enterprise:*:*:* cpe:2.3:a:oracle:jdk:1.7.0:update343:*:*:*:*:*:* cpe:2.3:a:oracle:jre:11.0.15.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:jre:1.7.0:update343:*:*:*:*:*:* cpe:2.3:a:oracle:jdk:1.8.0:update333:*:*:*:*:*:* cpe:2.3:a:oracle:graalvm:21.3.2:*:*:*:enterprise:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:jre:18.0.1.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:jre:1.8.0:update333:*:*:*:*:*:* |
|
CWE | CWE-681 |
27 Jul 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Jul 2022, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Jul 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Jul 2022, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Jul 2022, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jul 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jul 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Published : 2022-07-19 18:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-34169
Mitre link : CVE-2022-34169
CVE.ORG link : CVE-2022-34169
JSON object : View
debian
- debian_linux
oracle
- jre
- jdk
- openjdk
- graalvm
fedoraproject
- fedora
netapp
- solidfire
- cloud_insights_acquisition_unit
- hci_management_node
- active_iq_unified_manager
- 7-mode_transition_tool
- cloud_secure_agent
- oncommand_insight
- hci_compute_node
azul
- zulu
apache
- xalan-java
Incorrect Conversion between Numeric Types