Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Jdk | Oracle | 1.6.0-update113 (including) | 1.6.0-update113 (including) |
Jdk | Oracle | 1.7.0-update99 (including) | 1.7.0-update99 (including) |
Jdk | Oracle | 1.8.0-update77 (including) | 1.8.0-update77 (including) |
Jre | Oracle | 1.6.0-update113 (including) | 1.6.0-update113 (including) |
Jre | Oracle | 1.7.0-update99 (including) | 1.7.0-update99 (including) |
Jre | Oracle | 1.8.0-update77 (including) | 1.8.0-update77 (including) |