公告ID: KYLIN-2019-4473
安全等级: 中等
产品: Kylin V3
发布日期: 2019年8月1日
CVE: CVE-2019-4473
CVSS3评分: 7.8
概述:
This issue did not affect the Linux builds of IBM JDK, only version for AIX operating system were affected. 描述:
Multiple binaries in IBM SDK, Java Technology Edition 7, 7R, and 8 on the AIX platform use insecure absolute RPATHs, which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 163984. 系统版本:
KYLIN 3.2.x
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
java-1.7.1-ibm
java-1.8.0-ibm
java-1.7.1-ibm
java-1.8.0-ibm
java-1.8.0-ibm