what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Ubuntu Security Notice USN-5202-1

Ubuntu Security Notice USN-5202-1
Posted Dec 17, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5202-1 - Varnavas Papaioannou discovered that the FTP client implementation in OpenJDK accepted alternate server IP addresses when connecting with FTP passive mode. An attacker controlling an FTP server that an application connects to could possibly use this to expose sensitive information. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.04. Markus Loewe discovered that OpenJDK did not properly handle JAR files containing multiple manifest files. An attacker could possibly use this to bypass JAR signature verification. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.04. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2021-2341, CVE-2021-2369, CVE-2021-2388, CVE-2021-35550, CVE-2021-35556, CVE-2021-35559, CVE-2021-35561, CVE-2021-35564, CVE-2021-35565, CVE-2021-35567, CVE-2021-35578, CVE-2021-35586, CVE-2021-35588, CVE-2021-35603
SHA-256 | 8d16582a2ede922c1e80ae93b16d8afa5e31ee481062df75eef99fc73ebfea3a

Ubuntu Security Notice USN-5202-1

Change Mirror Download
=========================================================================
Ubuntu Security Notice USN-5202-1
December 17, 2021

openjdk-8, openjdk-lts vulnerabilities
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 21.10
- Ubuntu 21.04
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 ESM

Summary:

Several security issues were fixed in OpenJDK.

Software Description:
- openjdk-8: Open Source Java implementation
- openjdk-lts: Open Source Java implementation

Details:

Varnavas Papaioannou discovered that the FTP client implementation in
OpenJDK accepted alternate server IP addresses when connecting with FTP
passive mode. An attacker controlling an FTP server that an application
connects to could possibly use this to expose sensitive information
(rudimentary port scans). This issue only affected Ubuntu 16.04 ESM,
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.04. (CVE-2021-2341)

Markus Loewe discovered that OpenJDK did not properly handle JAR files
containing multiple manifest files. An attacker could possibly use
this to bypass JAR signature verification. This issue only affected
Ubuntu 16.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu
21.04. (CVE-2021-2369)

Huixin Ma discovered that the Hotspot VM in OpenJDK did not properly
perform range check elimination in some situations. An attacker could
possibly use this to construct a Java class that could bypass Java
sandbox restrictions. This issue only affected Ubuntu 16.04 ESM,
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.04. (CVE-2021-2388)

Asaf Greenholts discovered that OpenJDK preferred certain weak ciphers by
default. An attacker could possibly use this to expose sensitive
information. (CVE-2021-35550)

It was discovered that the Rich Text Format (RTF) Parser in OpenJDK did not
properly restrict the amount of memory allocated in some situations. An
attacker could use this to specially craft an RTF file that caused a denial
of service. (CVE-2021-35556)

It was discovered that the Rich Text Format (RTF) Reader in OpenJDK did not
properly restrict the amount of memory allocated in some situations. An
attacker could use this to specially craft an RTF file that caused a denial
of service. (CVE-2021-35559)

Markus Loewe discovered that the HashMap and HashSet implementations in
OpenJDK did not properly validate load factors during deserialization. An
attacker could use this to cause a denial of service (excessive memory
consumption). (CVE-2021-35561)

It was discovered that the Keytool component in OpenJDK did not properly
handle certificates with validity ending dates in the far future. An
attacker could use this to specially craft a certificate that when imported
could corrupt a keystore. (CVE-2021-35564)

Tristen Hayfield discovered that the HTTP server implementation in OpenJDK
did not properly handle TLS session close in some situations. A remote
attacker could possibly use this to cause a denial of service (application
infinite loop). (CVE-2021-35565)

Chuck Hunley discovered that the Kerberos implementation in OpenJDK did not
correctly report subject principals when using Kerberos Constrained
Delegation. An attacker could possibly use this to cause incorrect Kerberos
tickets to be used. (CVE-2021-35567)

it was discovered that the TLS implementation in OpenJDK did not properly
handle TLS handshakes in certain situations where a Java application is
acting as a TLS server. A remote attacker could possibly use this to cause
a denial of service (application crash). (CVE-2021-35578)

it was discovered that OpenJDK did not properly restrict the amount of
memory allocated when processing BMP images. An attacker could use this to
specially craft a BMP image file that could cause a denial of service.
(CVE-2021-35586)

It was discovered that the HotSpot VM in OpenJDK 8 did not properly perform
validation of inner class index values in some situations. An attacker
could use this to specially craft a class file that when loaded could cause
a denial of service (Java VM crash). (CVE-2021-35588)

Artem Smotrakov discovered that the TLS implementation in OpenJDK used non-
constant time comparisons during TLS handshakes. A remote attacker could
use this to expose sensitive information. (CVE-2021-35603)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 21.10:
openjdk-11-jre 11.0.13+8-0ubuntu1~21.10
openjdk-11-jre-headless 11.0.13+8-0ubuntu1~21.10
openjdk-11-jre-zero 11.0.13+8-0ubuntu1~21.10
openjdk-8-jre 8u312-b07-0ubuntu1~21.10
openjdk-8-jre-headless 8u312-b07-0ubuntu1~21.10
openjdk-8-jre-zero 8u312-b07-0ubuntu1~21.10

Ubuntu 21.04:
openjdk-11-jre 11.0.13+8-0ubuntu1~21.04
openjdk-11-jre-headless 11.0.13+8-0ubuntu1~21.04
openjdk-11-jre-zero 11.0.13+8-0ubuntu1~21.04
openjdk-8-jre 8u312-b07-0ubuntu1~21.04
openjdk-8-jre-headless 8u312-b07-0ubuntu1~21.04
openjdk-8-jre-zero 8u312-b07-0ubuntu1~21.04

Ubuntu 20.04 LTS:
openjdk-11-jre 11.0.13+8-0ubuntu1~20.04
openjdk-11-jre-headless 11.0.13+8-0ubuntu1~20.04
openjdk-11-jre-zero 11.0.13+8-0ubuntu1~20.04
openjdk-8-jre 8u312-b07-0ubuntu1~20.04
openjdk-8-jre-headless 8u312-b07-0ubuntu1~20.04
openjdk-8-jre-zero 8u312-b07-0ubuntu1~20.04

Ubuntu 18.04 LTS:
openjdk-11-jre 11.0.13+8-0ubuntu1~18.04
openjdk-11-jre-headless 11.0.13+8-0ubuntu1~18.04
openjdk-11-jre-zero 11.0.13+8-0ubuntu1~18.04
openjdk-8-jre 8u312-b07-0ubuntu1~18.04
openjdk-8-jre-headless 8u312-b07-0ubuntu1~18.04
openjdk-8-jre-zero 8u312-b07-0ubuntu1~18.04

Ubuntu 16.04 ESM:
openjdk-8-jre 8u312-b07-0ubuntu1~16.04
openjdk-8-jre-headless 8u312-b07-0ubuntu1~16.04
openjdk-8-jre-zero 8u312-b07-0ubuntu1~16.04

This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart any Java
applications or applets to make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-5202-1
CVE-2021-2341, CVE-2021-2369, CVE-2021-2388, CVE-2021-35550,
CVE-2021-35556, CVE-2021-35559, CVE-2021-35561, CVE-2021-35564,
CVE-2021-35565, CVE-2021-35567, CVE-2021-35578, CVE-2021-35586,
CVE-2021-35588, CVE-2021-35603

Package Information:
https://launchpad.net/ubuntu/+source/openjdk-8/8u312-b07-0ubuntu1~21.10
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1~21.10
https://launchpad.net/ubuntu/+source/openjdk-8/8u312-b07-0ubuntu1~21.04
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1~21.04
https://launchpad.net/ubuntu/+source/openjdk-8/8u312-b07-0ubuntu1~20.04
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1~20.04
https://launchpad.net/ubuntu/+source/openjdk-8/8u312-b07-0ubuntu1~18.04
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1~18.04
Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close