Search CVE reports
1 result
A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. The .jar MIME handlers installed by these packages execute files marked as executable when the mailcap package is installed. A compromised or...
12 affected packages
mailcap, openjdk-8, openjdk-9, openjdk-lts, openjdk-13...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mailcap | Fixed | Fixed | Fixed | — | — |
| openjdk-8 | Not affected | Not affected | Not affected | Not affected | Not affected |
| openjdk-9 | Not in release | Not in release | Not in release | — | — |
| openjdk-lts | Not affected | Not affected | Not affected | Not affected | Not affected |
| openjdk-13 | Not in release | Not in release | Not in release | Ignored | — |
| openjdk-16 | Not in release | Not in release | Not in release | Ignored | — |
| openjdk-17 | Not affected | Not affected | Not affected | Not affected | Not affected |
| openjdk-17-crac | Not affected | Not in release | Not in release | — | — |
| openjdk-18 | Not in release | Not in release | Ignored | — | — |
| openjdk-21 | Not affected | Not affected | Not affected | Not affected | — |
| openjdk-21-crac | Not affected | Not in release | Not in release | — | — |
| openjdk-25 | Not affected | Not affected | Not affected | — | — |