CVE-2022-40433

17 Feb 2024, 00:15

Type	Values Removed	Values Added
CPE	cpe:2.3:a:oracle:openjdk:8:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:17.0.2:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:7:update351:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*
References	{'url': 'https://bugs.openjdk.org/browse/JDK-8283441', 'name': 'https://bugs.openjdk.org/browse/JDK-8283441', 'tags': [], 'refsource': ''} {'url': 'https://github.com/openjdk/jdk11u-dev/pull/1183', 'name': 'https://github.com/openjdk/jdk11u-dev/pull/1183', 'tags': [], 'refsource': ''} {'url': 'https://github.com/openjdk/jdk13u-dev/pull/394', 'name': 'https://github.com/openjdk/jdk13u-dev/pull/394', 'tags': [], 'refsource': ''} {'url': 'https://github.com/openjdk/jdk15u-dev/pull/261', 'name': 'https://github.com/openjdk/jdk15u-dev/pull/261', 'tags': [], 'refsource': ''}
CVSS	v2 : unknown v3 : 4.9	v2 : unknown v3 : unknown
CWE	NVD-CWE-noinfo
Summary	An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special circumstances required (server must be running particular code locally, code compiled with an old, old version of javac, etc.).	Rejected reason: ** REJECT ** This CVE ID has been rejected by its CNA as it was not a security issue.

---

06 Dec 2023, 21:15

Type	Values Removed	Values Added
References	(MISC) https://bugs.openjdk.org/browse/JDK-8283441 - Exploit, Issue Tracking, Patch, Vendor Advisory	() https://bugs.openjdk.org/browse/JDK-8283441 -
References	(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 - Patch	() https://github.com/openjdk/jdk11u-dev/pull/1183 -
References	(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 - Patch	() https://github.com/openjdk/jdk13u-dev/pull/394 -
References	(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 - Patch	() https://github.com/openjdk/jdk15u-dev/pull/261 -

---

01 Dec 2023, 21:15

Type	Values Removed	Values Added
Summary	An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service.	An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special circumstances required (server must be running particular code locally, code compiled with an old, old version of javac, etc.).

---

25 Sep 2023, 17:23

Type	Values Removed	Values Added
CVSS	v2 : unknown v3 : 7.5	v2 : unknown v3 : 4.9

---

31 Aug 2023, 00:37

Type	Values Removed	Values Added
CVSS	v2 : unknown v3 : unknown	v2 : unknown v3 : 7.5
CWE		NVD-CWE-noinfo
CPE		cpe:2.3:a:oracle:openjdk:7:update351:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:8:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:17.0.2:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:* cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*
First Time		Oracle openjdk Oracle
References	(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 -	(MISC) https://github.com/openjdk/jdk15u-dev/pull/261 - Patch
References	(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 -	(MISC) https://github.com/openjdk/jdk13u-dev/pull/394 - Patch
References	(MISC) https://bugs.openjdk.org/browse/JDK-8283441 -	(MISC) https://bugs.openjdk.org/browse/JDK-8283441 - Exploit, Issue Tracking, Patch, Vendor Advisory
References	(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 -	(MISC) https://github.com/openjdk/jdk11u-dev/pull/1183 - Patch

---

22 Aug 2023, 19:16

Type	Values Removed	Values Added
New CVE

---