VulnerableCode Package Details - pkg:maven/jline/jline@1.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-5u1a-v9d1-rfac Aliases: CVE-2013-2035 GHSA-49j7-qghp-5wj8	Race condition in hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java in HawtJNI before 1.8, when a custom library path is not specified, allows local users to execute arbitrary Java code by overwriting a temporary JAR file with a predictable name in /tmp.	2.11 Affected by 0 other vulnerabilities.
VCID-djpm-b9q2-3qde Aliases: CVE-2010-1330 GHSA-wmq2-jc9m-xp4m OSV-77297	XSS in the regular expression engine when processing invalid UTF-8 byte sequences The regular expression engine in this package, when `$KCODE` is set to 'u', does not properly handle characters immediately after a UTF-8 character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.	1.4.1 Affected by 0 other vulnerabilities. 2.6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-5u1a-v9d1-rfac
Aliases:
CVE-2013-2035
GHSA-49j7-qghp-5wj8

Race condition in hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java in HawtJNI before 1.8, when a custom library path is not specified, allows local users to execute arbitrary Java code by overwriting a temporary JAR file with a predictable name in /tmp.

2.11
Affected by 0 other vulnerabilities.

VCID-djpm-b9q2-3qde
Aliases:
CVE-2010-1330
GHSA-wmq2-jc9m-xp4m
OSV-77297

XSS in the regular expression engine when processing invalid UTF-8 byte sequences The regular expression engine in this package, when `$KCODE` is set to 'u', does not properly handle characters immediately after a UTF-8 character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.

1.4.1
Affected by 0 other vulnerabilities.

2.6
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:30:48.747635+00:00	GitLab Importer	Affected by	VCID-5u1a-v9d1-rfac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2013-2035.yml	38.4.0
2026-04-16T20:30:12.334370+00:00	GitLab Importer	Affected by	VCID-djpm-b9q2-3qde	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2010-1330.yml	38.4.0
2026-04-11T21:41:13.976610+00:00	GitLab Importer	Affected by	VCID-5u1a-v9d1-rfac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2013-2035.yml	38.3.0
2026-04-11T21:40:40.285210+00:00	GitLab Importer	Affected by	VCID-djpm-b9q2-3qde	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2010-1330.yml	38.3.0
2026-04-02T21:55:23.404598+00:00	GitLab Importer	Affected by	VCID-5u1a-v9d1-rfac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2013-2035.yml	38.1.0
2026-04-02T21:54:46.162418+00:00	GitLab Importer	Affected by	VCID-djpm-b9q2-3qde	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2010-1330.yml	38.1.0
2026-04-01T16:12:38.181789+00:00	GitLab Importer	Affected by	VCID-5u1a-v9d1-rfac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2013-2035.yml	38.0.0
2026-04-01T16:12:04.775054+00:00	GitLab Importer	Affected by	VCID-djpm-b9q2-3qde	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/jline/jline/CVE-2010-1330.yml	38.0.0