vulnerability

IBM Java: IBM Security Update March 2019 (CVE-2018-12549)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Feb 11, 2019	Mar 12, 2019	Nov 8, 2021

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Feb 11, 2019

Added

Mar 12, 2019

Modified

Nov 8, 2021

Description

In Eclipse OpenJ9 version 0.11.0, the OpenJ9 JIT compiler may incorrectly omit a null check on the receiver object of an Unsafe call when accelerating it.

Solution

ibm-java-upgrade-8_0_5_30

References

CVE-2018-12549
https://attackerkb.com/topics/CVE-2018-12549
REDHAT-RHSA-2019:0469
REDHAT-RHSA-2019:0472
REDHAT-RHSA-2019:0640
REDHAT-RHSA-2019:1238

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today