Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/java-1.4.2-ibm@1.4.2.13.2.sap-1jpp.4?arch=el4_8
purl pkg:rpm/redhat/java-1.4.2-ibm@1.4.2.13.2.sap-1jpp.4?arch=el4_8
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.2
Vulnerabilities affecting this package (8)
Vulnerability Summary Fixed by
VCID-2gpd-vwgb-67cn
Aliases:
CVE-2009-2625
GHSA-334p-wv2m-w3vp
XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework. There are no reported fixed by versions.
VCID-a6gd-ytpw-duan
Aliases:
CVE-2009-3872
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-p2fp-hr1d-ske5
Aliases:
CVE-2009-1100
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-pj8c-99t4-8khz
Aliases:
CVE-2009-3868
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-pzcs-z6ju-qbcg
Aliases:
CVE-2009-3876
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-sakk-3wvn-tfhe
Aliases:
CVE-2009-3873
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-txfj-uzzx-4ue7
Aliases:
CVE-2009-3877
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
VCID-y12r-7vqr-wqg5
Aliases:
CVE-2008-5349
Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:58:40.661470+00:00 RedHat Importer Affected by VCID-y12r-7vqr-wqg5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5349.json 38.0.0
2026-04-01T14:58:26.321525+00:00 RedHat Importer Affected by VCID-p2fp-hr1d-ske5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1100.json 38.0.0
2026-04-01T14:57:59.170389+00:00 RedHat Importer Affected by VCID-2gpd-vwgb-67cn https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2625.json 38.0.0
2026-04-01T14:57:42.584958+00:00 RedHat Importer Affected by VCID-pj8c-99t4-8khz https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3868.json 38.0.0
2026-04-01T14:57:41.980438+00:00 RedHat Importer Affected by VCID-a6gd-ytpw-duan https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3872.json 38.0.0
2026-04-01T14:57:40.183199+00:00 RedHat Importer Affected by VCID-txfj-uzzx-4ue7 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3877.json 38.0.0
2026-04-01T14:57:39.961510+00:00 RedHat Importer Affected by VCID-pzcs-z6ju-qbcg https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3876.json 38.0.0
2026-04-01T14:57:39.302407+00:00 RedHat Importer Affected by VCID-sakk-3wvn-tfhe https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3873.json 38.0.0