CVE-2014-3068 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-3068 Interim 1 8 2023-02-10T03:01:00Z current 2022-07-12T01:54:07Z 2023-02-10T03:01:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-3068 IBM Java Runtime Environment (JRE) 7 R1 before SR1 FP1 (7.1.1.1), 7 before SR7 FP1 (7.0.7.1), 6 R1 before SR8 FP1 (6.1.8.1), 6 before SR16 FP1 (6.0.16.1), and before 5.0 SR16 FP7 (5.0.16.7) allows attackers to obtain the private key from a Certificate Management System (CMS) keystore via a brute force attack. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings HPE Helion OpenStack 8 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server Teradata 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 java-1_6_0-ibm java-1_7_0-openjdk java-1_7_0-openjdk-demo java-1_7_0-openjdk-devel java-1_7_0-openjdk-headless java-1_7_0-openjdk as a component of HPE Helion OpenStack 8 java-1_7_0-openjdk-demo as a component of HPE Helion OpenStack 8 java-1_7_0-openjdk-devel as a component of HPE Helion OpenStack 8 java-1_7_0-openjdk-headless as a component of HPE Helion OpenStack 8 java-1_7_0-openjdk as a component of SUSE Linux Enterprise High Performance Computing 12 SP5 java-1_6_0-ibm as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server 12 SP3-BCL java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server 12 SP3-BCL java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server 12 SP3-BCL java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server 12 SP3-BCL java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server 12 SP3-LTSS java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server 12 SP3-LTSS java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server 12 SP3-LTSS java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server 12 SP3-LTSS java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server 12 SP5 java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server 12 SP5 java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server 12 SP5 java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server 12 SP5 java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server Teradata 12 SP3 java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 java-1_7_0-openjdk-demo as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 java-1_7_0-openjdk-devel as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 java-1_7_0-openjdk-headless as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 java-1_7_0-openjdk as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 java-1_7_0-openjdk as a component of SUSE OpenStack Cloud 8 java-1_7_0-openjdk-demo as a component of SUSE OpenStack Cloud 8 java-1_7_0-openjdk-devel as a component of SUSE OpenStack Cloud 8 java-1_7_0-openjdk-headless as a component of SUSE OpenStack Cloud 8 java-1_7_0-openjdk as a component of SUSE OpenStack Cloud Crowbar 8 java-1_7_0-openjdk-demo as a component of SUSE OpenStack Cloud Crowbar 8 java-1_7_0-openjdk-devel as a component of SUSE OpenStack Cloud Crowbar 8 java-1_7_0-openjdk-headless as a component of SUSE OpenStack Cloud Crowbar 8 IBM Java Runtime Environment (JRE) 7 R1 before SR1 FP1 (7.1.1.1), 7 before SR7 FP1 (7.0.7.1), 6 R1 before SR8 FP1 (6.1.8.1), 6 before SR16 FP1 (6.0.16.1), and before 5.0 SR16 FP7 (5.0.16.7) allows attackers to obtain the private key from a Certificate Management System (CMS) keystore via a brute force attack. CVE-2014-3068 HPE Helion OpenStack 8:java-1_7_0-openjdk HPE Helion OpenStack 8:java-1_7_0-openjdk-demo HPE Helion OpenStack 8:java-1_7_0-openjdk-devel HPE Helion OpenStack 8:java-1_7_0-openjdk-headless SUSE Linux Enterprise High Performance Computing 12 SP5:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP2-BCL:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP2-BCL:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server 12 SP2-BCL:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server 12 SP2-BCL:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server 12 SP3-BCL:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP3-BCL:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server 12 SP3-BCL:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server 12 SP3-BCL:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server 12 SP3-ESPOS:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP3-ESPOS:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server 12 SP3-ESPOS:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server 12 SP3-ESPOS:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server 12 SP3-LTSS:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP3-LTSS:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server 12 SP3-LTSS:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server 12 SP3-LTSS:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server 12 SP5:java-1_7_0-openjdk SUSE Linux Enterprise Server 12 SP5:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server 12 SP5:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server 12 SP5:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server Teradata 12 SP3:java-1_7_0-openjdk SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_7_0-openjdk SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_7_0-openjdk-demo SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_7_0-openjdk-devel SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_7_0-openjdk SUSE OpenStack Cloud 8:java-1_7_0-openjdk SUSE OpenStack Cloud 8:java-1_7_0-openjdk-demo SUSE OpenStack Cloud 8:java-1_7_0-openjdk-devel SUSE OpenStack Cloud 8:java-1_7_0-openjdk-headless SUSE OpenStack Cloud Crowbar 8:java-1_7_0-openjdk SUSE OpenStack Cloud Crowbar 8:java-1_7_0-openjdk-demo SUSE OpenStack Cloud Crowbar 8:java-1_7_0-openjdk-devel SUSE OpenStack Cloud Crowbar 8:java-1_7_0-openjdk-headless SUSE Linux Enterprise Server 11 SP1 for Teradata:java-1_6_0-ibm critical 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N