CVE - CVE-2016-3443

CVE-ID
CVE-2016-3443	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:http://www.zerodayinitiative.com/advisories/ZDI-16-376 CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html CONFIRM:https://security.netapp.com/advisory/ntap-20160420-0001/ GENTOO:GLSA-201606-18 URL:https://security.gentoo.org/glsa/201606-18 REDHAT:RHSA-2016:0701 URL:http://rhn.redhat.com/errata/RHSA-2016-0701.html REDHAT:RHSA-2016:0702 URL:http://rhn.redhat.com/errata/RHSA-2016-0702.html REDHAT:RHSA-2016:0708 URL:http://rhn.redhat.com/errata/RHSA-2016-0708.html REDHAT:RHSA-2016:0716 URL:http://rhn.redhat.com/errata/RHSA-2016-0716.html REDHAT:RHSA-2016:1430 URL:https://access.redhat.com/errata/RHSA-2016:1430 REDHAT:RHSA-2016:1039 URL:http://rhn.redhat.com/errata/RHSA-2016-1039.html REDHAT:RHSA-2016:0677 URL:http://rhn.redhat.com/errata/RHSA-2016-0677.html REDHAT:RHSA-2016:0678 URL:http://rhn.redhat.com/errata/RHSA-2016-0678.html REDHAT:RHSA-2016:0679 URL:http://rhn.redhat.com/errata/RHSA-2016-0679.html REDHAT:RHSA-2017:1216 URL:https://access.redhat.com/errata/RHSA-2017:1216 SUSE:SUSE-SU-2016:1299 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html SUSE:SUSE-SU-2016:1300 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html SUSE:SUSE-SU-2016:1303 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html SUSE:SUSE-SU-2016:1378 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html SUSE:SUSE-SU-2016:1379 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html SUSE:SUSE-SU-2016:1388 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00061.html SUSE:SUSE-SU-2016:1458 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00067.html SUSE:SUSE-SU-2016:1475 URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00002.html BID:86482 URL:http://www.securityfocus.com/bid/86482 SECTRACK:1035596 URL:http://www.securitytracker.com/id/1035596
Assigning CNA
N/A
Date Entry Created
20160317	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20160317)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org