CVE-2016-3485
First published: Thu Jul 21 2016(Updated: )
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Java SE 7 | =1.6.0-update115 | |
| Oracle Java SE 7 | =1.7.0-update101 | |
| Oracle Java SE 7 | =1.8.0-update91 | |
| Oracle Java SE 7 | =1.8.0-update92 | |
| Oracle JRE | =1.6.0-update115 | |
| Oracle JRE | =1.7.0-update101 | |
| Oracle JRE | =1.8.0-update91 | |
| Oracle JRE | =1.8.0-update92 | |
| Oracle Java SE | =r28.3.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html
- http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00006.html
- http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.securityfocus.com/bid/91787
- http://www.securitytracker.com/id/1036365
- https://kc.mcafee.com/corporate/index?page=content&id=SB10166
- https://security.gentoo.org/glsa/201610-08
- https://security.gentoo.org/glsa/201701-43
- https://security.netapp.com/advisory/ntap-20160721-0001/
Frequently Asked Questions
What is the severity of CVE-2016-3485?
CVE-2016-3485 is classified as a medium severity vulnerability, affecting the integrity of the Oracle Java SE and JRockit environments.
How do I fix CVE-2016-3485?
To mitigate CVE-2016-3485, it's recommended to upgrade to the latest version of Oracle Java SE or JRockit that has addressed this vulnerability.
Which products are affected by CVE-2016-3485?
CVE-2016-3485 affects Oracle Java SE versions 6u115, 7u101, 8u91, and 8u92, as well as JRockit R28.3.10.
Are there any known exploits for CVE-2016-3485?
As of now, there are no publicly known exploits specifically targeting CVE-2016-3485.
What are the potential impacts of CVE-2016-3485?
The potential impact of CVE-2016-3485 includes unauthorized access and data integrity issues due to vulnerabilities in the Networking component.
- agent/references
- agent/type
- agent/severity
- agent/remedy
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle java se 7
- version/oracle java se 7/1.6.0-update115
- version/oracle java se 7/1.7.0-update101
- version/oracle java se 7/1.8.0-update91
- version/oracle java se 7/1.8.0-update92
- canonical/oracle jre
- version/oracle jre/1.6.0-update115
- version/oracle jre/1.7.0-update101
- version/oracle jre/1.8.0-update91
- version/oracle jre/1.8.0-update92
- canonical/oracle java se
- version/oracle java se/r28.3.10