VulnerableCode Package Details - pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.7-1jpp.3?arch=el4

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.7-1jpp.3?arch=el4

Essentials
History (14)

purl	pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.7-1jpp.3?arch=el4

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (14)

Vulnerability	Summary	Fixed by
VCID-8mq3-1c6d-n7a9 Aliases: CVE-2009-3866	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-a6gd-ytpw-duan Aliases: CVE-2009-3872	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-c5un-z1f5-wuhd Aliases: CVE-2009-3867	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-e7t4-rgaz-4uec Aliases: CVE-2009-3869	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-jau7-gfz8-dkfa Aliases: CVE-2009-3555 GHSA-f7w7-6pjc-wwm6 VU#120541	The renegotiation vulnerability in SSL protocol	There are no reported fixed by versions.
VCID-ju9j-bz1n-2udp Aliases: CVE-2009-3874	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-pj8c-99t4-8khz Aliases: CVE-2009-3868	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-pzcs-z6ju-qbcg Aliases: CVE-2009-3876	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-sakk-3wvn-tfhe Aliases: CVE-2009-3873	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-th92-rtps-jba3 Aliases: CVE-2009-3871	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-txfj-uzzx-4ue7 Aliases: CVE-2009-3877	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-weda-ey6f-yuc4 Aliases: CVE-2009-3875	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-why8-v1se-h3fj Aliases: CVE-2009-3865	Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-z7ht-bq8z-3qgd Aliases: CVE-2009-0217 GHSA-8hfm-837h-hjg5	XML signature HMAC truncation authentication bypass This package uses a parameter that defines an HMAC truncation length (`HMACOutputLength`) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:58:06.674061+00:00	RedHat Importer	Affected by	VCID-z7ht-bq8z-3qgd	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0217.json	38.0.0
2026-04-01T14:57:42.689205+00:00	RedHat Importer	Affected by	VCID-pj8c-99t4-8khz	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3868.json	38.0.0
2026-04-01T14:57:42.420648+00:00	RedHat Importer	Affected by	VCID-c5un-z1f5-wuhd	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3867.json	38.0.0
2026-04-01T14:57:42.272024+00:00	RedHat Importer	Affected by	VCID-8mq3-1c6d-n7a9	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3866.json	38.0.0
2026-04-01T14:57:42.208268+00:00	RedHat Importer	Affected by	VCID-why8-v1se-h3fj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3865.json	38.0.0
2026-04-01T14:57:42.112209+00:00	RedHat Importer	Affected by	VCID-a6gd-ytpw-duan	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3872.json	38.0.0
2026-04-01T14:57:41.118849+00:00	RedHat Importer	Affected by	VCID-ju9j-bz1n-2udp	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3874.json	38.0.0
2026-04-01T14:57:40.842650+00:00	RedHat Importer	Affected by	VCID-th92-rtps-jba3	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3871.json	38.0.0
2026-04-01T14:57:40.565850+00:00	RedHat Importer	Affected by	VCID-e7t4-rgaz-4uec	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3869.json	38.0.0
2026-04-01T14:57:40.301213+00:00	RedHat Importer	Affected by	VCID-txfj-uzzx-4ue7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3877.json	38.0.0
2026-04-01T14:57:40.040372+00:00	RedHat Importer	Affected by	VCID-pzcs-z6ju-qbcg	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3876.json	38.0.0
2026-04-01T14:57:39.795116+00:00	RedHat Importer	Affected by	VCID-weda-ey6f-yuc4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3875.json	38.0.0
2026-04-01T14:57:39.478143+00:00	RedHat Importer	Affected by	VCID-sakk-3wvn-tfhe	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3873.json	38.0.0
2026-04-01T14:57:30.552229+00:00	RedHat Importer	Affected by	VCID-jau7-gfz8-dkfa	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3555.json	38.0.0