vulnerability
Amazon Linux AMI 2: CVE-2022-40433: Security patch for java-1.8.0-openjdk (ALAS-2023-2278)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:M/C:N/I:N/A:C) | Aug 22, 2023 | Oct 6, 2023 | Jan 28, 2025 |
Severity
6
CVSS
(AV:N/AC:L/Au:M/C:N/I:N/A:C)
Published
Aug 22, 2023
Added
Oct 6, 2023
Modified
Jan 28, 2025
Description
An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special circumstances required (server must be running particular code locally, code compiled with an old, old version of javac, etc.).
Solution(s)
amazon-linux-ami-2-upgrade-java-1-8-0-openjdkamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-accessibilityamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-accessibility-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-debuginfoamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-demoamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-demo-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-develamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-devel-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-headlessamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-headless-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-javadocamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-javadoc-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-javadoc-zipamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-javadoc-zip-debugamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-srcamazon-linux-ami-2-upgrade-java-1-8-0-openjdk-src-debug
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.