In Eclipse OpenJ9 version 0.11.0, the OpenJ9 JIT compiler may incorrectly omit a null check on the receiver object of an Unsafe call when accelerating it.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HEclipse Openj9
APPEclipse0.11.0Red Hat Enterprise Linux Desktop
OSRedhat6.07.0Red Hat Enterprise Linux Server
OSRedhat6.07.0Red Hat Enterprise Linux Workstation
OSRedhat6.07.0Red Hat Satellite
APPRedhat5.8
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
References
Related vulnerabilities
CVE-2021-40438CRITICAL9.0⚠ KEVten sam produkt
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...
CVE-2019-5544CRITICAL9.8⚠ KEVten sam produkt
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the s...
CVE-2016-4171CRITICAL9.8⚠ KEVten sam produkt
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbi...
CVE-2016-4117CRITICAL9.8⚠ KEVten sam produkt
Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified ve...
CVE-2016-3427CRITICAL9.8⚠ KEVten sam produkt
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...