vulnerability

Red Hat: CVE-2018-12549: CVE-2018-12549 IBM JDK: missing null check when accelerating Unsafe calls (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	2019-02-11	2019-03-07	2024-11-27

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

2019-02-11

Added

2019-03-07

Modified

2024-11-27

Description

In Eclipse OpenJ9 version 0.11.0, the OpenJ9 JIT compiler may incorrectly omit a null check on the receiver object of an Unsafe call when accelerating it.

Solution(s)

redhat-upgrade-java-1-8-0-ibmredhat-upgrade-java-1-8-0-ibm-demoredhat-upgrade-java-1-8-0-ibm-develredhat-upgrade-java-1-8-0-ibm-headlessredhat-upgrade-java-1-8-0-ibm-jdbcredhat-upgrade-java-1-8-0-ibm-pluginredhat-upgrade-java-1-8-0-ibm-srcredhat-upgrade-java-1-8-0-ibm-webstart

References

NVD-CVE-2018-12549
REDHAT-RHSA-2019:1238

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today