vulnerability
Amazon Linux AMI: Security patch for java-1.7.0-openjdk (ALAS-2016-643) (multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jan 20, 2016 | Feb 12, 2016 | Jul 28, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jan 20, 2016
Added
Feb 12, 2016
Modified
Jul 28, 2025
Description
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Solutions
amazon-linux-upgrade-java-1-7-0-openjdkamazon-linux-upgrade-java-1-7-0-openjdk-debuginfoamazon-linux-upgrade-java-1-7-0-openjdk-demoamazon-linux-upgrade-java-1-7-0-openjdk-develamazon-linux-upgrade-java-1-7-0-openjdk-javadocamazon-linux-upgrade-java-1-7-0-openjdk-src
References
- AMAZON-ALAS-2016-643
- CVE-2015-4871
- https://attackerkb.com/topics/CVE-2015-4871
- CVE-2015-7575
- https://attackerkb.com/topics/CVE-2015-7575
- CVE-2016-0402
- https://attackerkb.com/topics/CVE-2016-0402
- CVE-2016-0448
- https://attackerkb.com/topics/CVE-2016-0448
- CVE-2016-0466
- https://attackerkb.com/topics/CVE-2016-0466
- CVE-2016-0483
- https://attackerkb.com/topics/CVE-2016-0483
- CVE-2016-0494
- https://attackerkb.com/topics/CVE-2016-0494
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.