CVE-2022-40433

Rejected reason: ** REJECT ** This CVE ID has been rejected by its CNA as it was not a security issue.

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

17 Feb 2024, 00:15

Type	Values Removed	Values Added
Summary	(es) Se ha descubierto un problema en la función ciMethodBlocks::make_block_at de Oracle JDK (HotSpot VM) 11, 17 y OpenJDK (HotSpot VM) 8, 11, 17, que permite a los atacantes provocar una denegación de servicio.
Summary	(en) An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special circumstances required (server must be running particular code locally, code compiled with an old, old version of javac, etc.).	(en) Rejected reason: REJECT This CVE ID has been rejected by its CNA as it was not a security issue.
CVSS	v2 : ~~unknown~~ v3 : ~~4.9~~	v2 : unknown v3 : unknown
CPE	cpe:2.3:a:oracle:openjdk:11:::::::* cpe:2.3:a:oracle:openjdk:7:update351:::::: cpe:2.3:a:oracle:openjdk:8:::::::* cpe:2.3:a:oracle:openjdk:18:::::::* cpe:2.3:a:oracle:openjdk:17.0.2:::::::*
CWE	~~NVD-CWE-noinfo~~
References	~~{'url': 'https://bugs.openjdk.org/browse/JDK-8283441', 'source': 'secalert_us@oracle.com'}~~ ~~{'url': 'https://github.com/openjdk/jdk11u-dev/pull/1183', 'source': 'secalert_us@oracle.com'}~~ ~~{'url': 'https://github.com/openjdk/jdk13u-dev/pull/394', 'source': 'secalert_us@oracle.com'}~~ ~~{'url': 'https://github.com/openjdk/jdk15u-dev/pull/261', 'source': 'secalert_us@oracle.com'}~~

06 Dec 2023, 21:15

Type	Values Removed	Values Added
References	~~(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 - Patch~~	() https://github.com/openjdk/jdk15u-dev/pull/261 -
References	~~(MISC) https://bugs.openjdk.org/browse/JDK-8283441 - Exploit, Issue Tracking, Patch, Vendor Advisory~~	() https://bugs.openjdk.org/browse/JDK-8283441 -
References	~~(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 - Patch~~	() https://github.com/openjdk/jdk11u-dev/pull/1183 -
References	~~(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 - Patch~~	() https://github.com/openjdk/jdk13u-dev/pull/394 -

01 Dec 2023, 21:15

Type	Values Removed	Values Added
CPE		cpe:2.3:a:oracle:openjdk:18:::::::* cpe:2.3:a:oracle:openjdk:11:::::::* cpe:2.3:a:oracle:openjdk:17.0.2:::::::* cpe:2.3:a:oracle:openjdk:7:update351:::::: cpe:2.3:a:oracle:openjdk:8:::::::*
Summary	~~An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service.~~	An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special circumstances required (server must be running particular code locally, code compiled with an old, old version of javac, etc.).
References	~~(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 -~~	(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 - Patch
References	~~(MISC) https://bugs.openjdk.org/browse/JDK-8283441 -~~	(MISC) https://bugs.openjdk.org/browse/JDK-8283441 - Exploit, Issue Tracking, Patch, Vendor Advisory
References	~~(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 -~~	(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 - Patch
References	~~(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 -~~	(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 - Patch
CWE		NVD-CWE-noinfo
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.9

22 Aug 2023, 19:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-08-22 19:16

Updated : 2024-02-17 00:15

NVD link : CVE-2022-40433

Mitre link : CVE-2022-40433

CVE.ORG link : CVE-2022-40433

JSON object : View

Products Affected

No product.

CWE

No CWE.