VulnerableCode Package Details - pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1?arch=el7

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1?arch=el7

Essentials
History (11)

purl	pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1?arch=el7

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5

Vulnerabilities affecting this package (11)

Vulnerability	Summary	Fixed by
VCID-4p3u-gdhr-jucj Aliases: CVE-2016-0402	Multiple vulnerabilities have been found in IcedTea allowing remote attackers to affect confidentiality, integrity, and availability through various vectors.	There are no reported fixed by versions.
VCID-9d14-kqac-nbbt Aliases: CVE-2015-8472	Improper Restriction of Operations within the Bounds of a Memory Buffer Buffer overflow in the png_set_PLTE function in libpng allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8126.	There are no reported fixed by versions.
VCID-ajs9-y6dt-5fhj Aliases: CVE-2015-8540	Out-of-bounds Read Integer underflow in the png_check_keyword function in pngwutil.c in libpng allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.	There are no reported fixed by versions.
VCID-cu24-1rcd-93g3 Aliases: CVE-2015-8126	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.	There are no reported fixed by versions.
VCID-gted-bme5-r7gf Aliases: CVE-2016-0494	Multiple vulnerabilities have been found in IcedTea allowing remote attackers to affect confidentiality, integrity, and availability through various vectors.	There are no reported fixed by versions.
VCID-jj9j-kwv8-byba Aliases: CVE-2016-0466	Multiple vulnerabilities have been found in IcedTea allowing remote attackers to affect confidentiality, integrity, and availability through various vectors.	There are no reported fixed by versions.
VCID-pvgc-ckyg-jfhm Aliases: CVE-2015-5041	JDK: J9 JVM allows code to invoke non-public interface methods	There are no reported fixed by versions.
VCID-qup9-qy11-fqhe Aliases: CVE-2015-7575	Multiple vulnerabilities have been found in mbed TLS, the worst of which could lead to the remote execution of arbitrary code.	There are no reported fixed by versions.
VCID-wbup-e69y-3fgh Aliases: CVE-2016-0448	Multiple vulnerabilities have been found in IcedTea allowing remote attackers to affect confidentiality, integrity, and availability through various vectors.	There are no reported fixed by versions.
VCID-wqcq-rktw-jyct Aliases: CVE-2016-0483	Multiple vulnerabilities have been found in IcedTea allowing remote attackers to affect confidentiality, integrity, and availability through various vectors.	There are no reported fixed by versions.
VCID-yga5-gj6n-byga Aliases: CVE-2015-7981	Exposure of Sensitive Information to an Unauthorized Actor The png_convert_to_rfc1123 function in png.c in libpng allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:39:27.989335+00:00	RedHat Importer	Affected by	VCID-yga5-gj6n-byga	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7981.json	38.0.0
2026-04-01T14:38:50.174654+00:00	RedHat Importer	Affected by	VCID-9d14-kqac-nbbt	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8472.json	38.0.0
2026-04-01T14:38:49.608523+00:00	RedHat Importer	Affected by	VCID-cu24-1rcd-93g3	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8126.json	38.0.0
2026-04-01T14:38:31.881177+00:00	RedHat Importer	Affected by	VCID-ajs9-y6dt-5fhj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8540.json	38.0.0
2026-04-01T14:38:18.157655+00:00	RedHat Importer	Affected by	VCID-qup9-qy11-fqhe	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7575.json	38.0.0
2026-04-01T14:38:08.518007+00:00	RedHat Importer	Affected by	VCID-wqcq-rktw-jyct	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0483.json	38.0.0
2026-04-01T14:38:07.802990+00:00	RedHat Importer	Affected by	VCID-jj9j-kwv8-byba	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0466.json	38.0.0
2026-04-01T14:38:07.042538+00:00	RedHat Importer	Affected by	VCID-wbup-e69y-3fgh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0448.json	38.0.0
2026-04-01T14:38:06.310243+00:00	RedHat Importer	Affected by	VCID-4p3u-gdhr-jucj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0402.json	38.0.0
2026-04-01T14:38:05.499508+00:00	RedHat Importer	Affected by	VCID-gted-bme5-r7gf	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0494.json	38.0.0
2026-04-01T14:38:00.490639+00:00	RedHat Importer	Affected by	VCID-pvgc-ckyg-jfhm	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5041.json	38.0.0