Search for packages
| purl | pkg:deb/debian/openjdk-17@17.0.12%2B7-2~deb11u1?distro=sid |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-11vj-5zz4-6fe7 | openjdk: Enhance Buffered Image handling (Oracle CPU 2025-04) |
CVE-2025-30698
|
| VCID-13t7-vubq-8kae | openjdk: Enhance certificate handling (Oracle CPU 2025-10) |
CVE-2025-53057
|
| VCID-1buj-5nv9-bbcd | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22044
|
| VCID-1d6t-ndfc-m7hg | OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151) |
CVE-2022-21443
|
| VCID-2tju-1r8k-sbf9 | OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) |
CVE-2024-21094
|
| VCID-3aae-859j-1bg9 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21293
|
| VCID-3hj5-z3ck-tkha | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21365
|
| VCID-3tav-ffar-hfhb | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2023-21843
|
| VCID-44t4-tppq-ybb3 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. |
CVE-2022-21549
|
| VCID-47ae-xdqr-6qgb | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. |
CVE-2022-21540
|
| VCID-4snj-etwf-eqe8 | openjdk: Improve HttpServer Request handling (Oracle CPU 2026-01) |
CVE-2026-21933
|
| VCID-4thy-7844-xuc9 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21360
|
| VCID-5et1-ytak-xqh7 | OpenJDK: Excessive symbol length can lead to infinite loop (8319859) |
CVE-2024-21138
|
| VCID-5xg6-kds9-g3hf | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21294
|
| VCID-6196-gvhx-ruh8 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-21235
|
| VCID-6wtu-f43b-1ue9 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35559
|
| VCID-6zn4-b8k4-3bcn | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35586
|
| VCID-76rb-sg3r-bqce | OpenJDK: potential UTF8 size overflow (8314794) |
CVE-2024-21131
|
| VCID-8cup-qnc8-wudx | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20952
|
| VCID-8wud-7t2q-xfa3 | OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) |
CVE-2023-21968
|
| VCID-97bv-kegv-uyd9 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35567
|
| VCID-98bc-5jrc-5kas | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21341
|
| VCID-9n5v-4daz-eyc2 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-21217
|
| VCID-9urr-3gt2-mfhe | OpenJDK: long Exception message leading to crash (8319851) |
CVE-2024-21011
|
| VCID-9uzg-sja9-hkcy | OpenJDK: Swing HTML parsing issue (8296832) |
CVE-2023-21939
|
| VCID-a282-ksr4-j3cu | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22081
|
| VCID-a3xk-3wya-s3gm | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2023-21835
|
| VCID-a59u-h67v-yygm | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22041
|
| VCID-a95g-84vs-xbav | OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008) |
CVE-2022-21476
|
| VCID-apsn-z1br-3bdy | openjdk: Enhance Certificate Checking (Oracle CPU 2026-01) |
CVE-2026-21945
|
| VCID-b32x-4pu4-jkh4 | openjdk: Better Glyph drawing (Oracle CPU 2025-07) |
CVE-2025-30749
|
| VCID-bqav-d2f9-x7d1 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-2161
|
| VCID-d6gm-thtx-bqb7 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20932
|
| VCID-duy9-6f1p-vqah | openjdk: Enhance Handling of URIs (Oracle CPU 2026-01) |
CVE-2026-21932
|
| VCID-dwh6-xw5k-mqg8 | OpenJDK: missing string checks for NULL characters (8296622) |
CVE-2023-21937
|
| VCID-dyg2-udwy-cud7 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22045
|
| VCID-e6dm-6767-9kdk | openjdk: Improve HTTP client header handling (Oracle CPU 2025-07) |
CVE-2025-50059
|
| VCID-fau4-ajny-nfbd | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20921
|
| VCID-fhj9-p1gx-c7hp | OpenJDK: incorrect enqueue of references in garbage collector (8298191) |
CVE-2023-21954
|
| VCID-fwk5-wqvn-4qaz | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20926
|
| VCID-fwv1-sj5y-xygd | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2022-21619
|
| VCID-g2fj-4mgh-23fs | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21283
|
| VCID-gjgy-dfq7-zfb2 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22049
|
| VCID-gksn-mb6g-rue5 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35556
|
| VCID-h2w2-8e43-j3g6 | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2022-21624
|
| VCID-h7n1-qfs3-v3fw | OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) |
CVE-2024-21012
|
| VCID-hdz7-kcy9-juah | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35564
|
| VCID-he8f-erpk-sqh8 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35561
|
| VCID-hx4c-96gx-2fbq | OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504) |
CVE-2022-21426
|
| VCID-jm9f-9y4b-qye7 | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2022-39399
|
| VCID-jw6x-cntu-nfht | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22036
|
| VCID-jztz-7cuw-t7ep | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20945
|
| VCID-kngz-x6mk-fqer | OpenJDK: Improper ECDSA signature verification (Libraries, 8277233) |
CVE-2022-21449
|
| VCID-kq78-adbv-67a7 | OpenJDK: improper connection handling during TLS handshake (8294474) |
CVE-2023-21930
|
| VCID-m3e1-5tfw-uyhv | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2022-21618
|
| VCID-mt9c-tby1-wqe9 | openjdk: Improve JMX connections (Oracle CPU 2026-01) |
CVE-2026-21925
|
| VCID-mumk-x95v-bfc8 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21366
|
| VCID-n71d-tx76-vbbd | OpenJDK: Out-of-bounds access in 2D image handling (8324559) |
CVE-2024-21145
|
| VCID-ne6z-gg9f-qkcy | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21282
|
| VCID-nr6u-aysf-7kgk | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20919
|
| VCID-ntga-y6cv-a3df | openjdk: Enhance array handling (Oracle CPU 2025-01) |
CVE-2025-21502
|
| VCID-nxx8-nehy-qyhg | openjdk: Enhance Path Factories (Oracle CPU 2025-10) |
CVE-2025-53066
|
| VCID-p5ye-19wy-ayb8 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35603
|
| VCID-p9na-7jta-9yg4 | openjdk: Enhance TLS protocol support (Oracle CPU 2025-07) |
CVE-2025-30754
|
| VCID-q5gr-6u92-6ybk | OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) |
CVE-2023-21938
|
| VCID-rfs8-njaq-qkc8 | Apache Xalan Java XSLT library integer truncation issue when processing malicious XSLT stylesheets The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. A fix for this issue was published in September 2022 as part of an anticipated 2.7.3 release. |
CVE-2022-34169
GHSA-9339-86wc-4qgf |
| VCID-rgbz-akft-f7e6 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21296
|
| VCID-rggy-f3va-mfay | OpenJDK: RangeCheckElimination array index overflow (8323231) |
CVE-2024-21147
|
| VCID-shg1-t3nh-67hk | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21305
|
| VCID-t4r8-ujpb-5kdk | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. |
CVE-2022-21541
|
| VCID-tna8-m3b1-nkhn | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21291
|
| VCID-tr4r-wm4s-auej | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21340
|
| VCID-u81s-cs95-4yhx | openjdk: Better TLS connection support (Oracle CPU 2025-04) |
CVE-2025-21587
|
| VCID-u9xe-x4f1-9fc8 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-2163
|
| VCID-um54-6ggz-gqf9 | Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
CVE-2022-21628
|
| VCID-vbw8-4j9f-eya5 | openjdk: Glyph out-of-memory access and crash (Oracle CPU 2025-07) |
CVE-2025-50106
|
| VCID-vpnc-yu7r-bqb6 | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-21208
|
| VCID-vuhe-re6z-8kax | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22025
|
| VCID-wn4r-ugaa-5ydb | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-20918
|
| VCID-ws4h-edpn-nudd | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21299
|
| VCID-x4ms-sbj7-aufu | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2023-22006
|
| VCID-xfqx-d3jw-yuhn | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21248
|
| VCID-xk2v-7cgk-13ex | OpenJDK: certificate validation issue in TLS session negotiation (8298310) |
CVE-2023-21967
|
| VCID-y5qu-j3wt-wuej | OpenJDK: URI parsing inconsistencies (JNDI, 8278972) |
CVE-2022-21496
|
| VCID-y8bc-k5qu-c7f5 | openjdk: Improve compiler transformations (Oracle CPU 2025-04) |
CVE-2025-30691
|
| VCID-yxk8-59zb-y7g2 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2021-35578
|
| VCID-z356-tw9t-q7bp | Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
CVE-2024-21210
|
| VCID-zdra-bzqn-4ug9 | OpenJDK: integer overflow in C1 compiler address generation (8322122) |
CVE-2024-21068
|
| VCID-zgpr-3zft-zqgt | OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) |
CVE-2024-21140
|
| VCID-zh9v-47ue-p7ep | OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672) |
CVE-2022-21434
|
| VCID-ztx2-xh6v-nke1 | Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service. |
CVE-2022-21277
|