Oracle Java SE is vulnerable to privilege escalation. The vulnerability exists in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE due to an unknown part of the component Scripting. An unauthenticated attacker with network access via multiple protocols could compromise Java SE, Java SE Embedded, JRockit impacting confidentiality, integrity, and availability.
www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
www.securityfocus.com/bid/105622
www.securitytracker.com/id/1041889
access.redhat.com/errata/RHSA-2018:2942
access.redhat.com/errata/RHSA-2018:2943
access.redhat.com/errata/RHSA-2018:3002
access.redhat.com/errata/RHSA-2018:3003
access.redhat.com/errata/RHSA-2018:3521
access.redhat.com/errata/RHSA-2018:3533
access.redhat.com/errata/RHSA-2018:3534
access.redhat.com/errata/RHSA-2018:3852
access.redhat.com/security/updates/classification/#critical
security.gentoo.org/glsa/201908-10
security.netapp.com/advisory/ntap-20181018-0001/
support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03952en_us
usn.ubuntu.com/3804-1/
www.debian.org/security/2018/dsa-4326