Candidate: CVE-2018-1656
PublicDate: 2018-08-20 21:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1656
 http://www.ibm.com/support/docview.wss?uid=ibm10719653
 https://exchange.xforce.ibmcloud.com/vulnerabilities/144882
Description:
 The IBM Java Runtime Environment's Diagnostic Tooling Framework for Java
 (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not
 protect against path traversal attacks when extracting compressed dump
 files. IBM X-Force ID: 144882.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N [6.5 MEDIUM]


Patches_ibm-java80:
upstream_ibm-java80: released (8.0.5.20)
precise/esm_ibm-java80: DNE
trusty_ibm-java80: DNE
trusty/esm_ibm-java80: DNE
xenial_ibm-java80: released (8.0.5.22-0ubuntu1)
bionic_ibm-java80: released (8.0.5.22-0ubuntu1)
cosmic_ibm-java80: DNE
devel_ibm-java80: DNE