Project

General

Profile

Bug #1801

Multiple vunerabilities in openjdk6 < 1.11.10 allows remote code execution

Added by Leonardo Arena about 6 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
Start date:
04/22/2013
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:


Subtasks

Bug #1802: [v2.5] Multiple vulnerabilities in openjdk6 < 1.11.10 allows remote code executionClosed

Bug #1803: [v2.4] Multiple vulnerabilities in openjdk6 < 1.11.10 allows remote code executionClosed

Associated revisions

Revision 871dd194 (diff)
Added by Natanael Copa about 6 years ago

main/openjdk: security upgrade to icedtea 1.11.11

fixes #1801

icedtea6-1.11.11:
RH952389: Temporary files created with insecure permissions

icedtea6-1.11.10:
S6657673, CVE-2013-1518: Issues with JAXP
S7200507: Refactor Introspector internals
S8000724, CVE-2013-2417: Improve networking serialization
S8001031, CVE-2013-2419: Better font processing
S8001040, CVE-2013-1537: Rework RMI model
S8001322: Refactor deserialization
S8001329, CVE-2013-1557: Augment RMI logging
S8003335: Better handling of Finalizer thread
S8003445: Adjust JAX-WS to focus on API
S8003543, CVE-2013-2415: Improve processing of MTOM attachments
S8004261: Improve input validation
S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames
S8004986, CVE-2013-2383: Better handling of glyph table
S8004987, CVE-2013-2384: Improve font layout
S8004994, CVE-2013-1569: Improve checking of glyph table
S8005432: Update access to JAX-WS
S8005943: (process) Improved Runtime.exec
S8006309: More reliable control panel operation
S8006435, CVE-2013-2424: Improvements in JMX
S8006790: Improve checking for windows
S8006795: Improve font warning messages
S8007406: Improve accessibility of AccessBridge
S8007617, CVE-2013-2420: Better validation of images
S8007667, CVE-2013-2430: Better image reading
S8007918, CVE-2013-2429: Better image writing
S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap
S8009305, CVE-2013-0401: Improve AWT data transfer
S8009699, CVE-2013-2421: Methodhandle lookup
S8009814, CVE-2013-1488: Better driver management
S8009857, CVE-2013-2422: Problem with plugin

icedtea6-1.11.9:
S8007014, CVE-2013-0809: Improve image handling
S8007675, CVE-2013-1493: Improve color conversion

icedtea6-1.11.8:
S8006446, CVE-2013-1486: Restrict MBeanServer access
S8006777, CVE-2013-0169: Improve TLS handling of invalid messages
S8007688: Blacklist known bad certificate

icedtea6-1.11.7:
(bugfixes only)

icedtea6-1.11.6:
S6563318, CVE-2013-0424: RMI data sanitization
S6664509, CVE-2013-0425: Add logging context
S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time
S6776941: CVE-2013-0427: Improve thread pool shutdown
S7141694, CVE-2013-0429: Improving CORBA internals
S7173145: Improve in-memory representation of splashscreens
S7186945: Unpack200 improvement
S7186946: Refine unpacker resource usage
S7186948: Improve Swing data validation
S7186952, CVE-2013-0432: Improve clipboard access
S7186954: Improve connection performance
S7186957: Improve Pack200 data validation
S7192392, CVE-2013-0443: Better validation of client keys
S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
S7192977, CVE-2013-0442: Issue in toolkit thread
S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies
S7200491: Tighten up JTable layout code
S7200500: Launcher better input validation
S7201064: Better dialogue checking
S7201066, CVE-2013-0441: Change modifiers on unused fields
S7201068, CVE-2013-0435: Better handling of UI elements
S7201070: Serialization to conform to protocol
S7201071, CVE-2013-0433: InetSocketAddress serialization issue
S8000210: Improve JarFile code quality
S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
S8000540, CVE-2013-1475: Improve IIOP type reuse management
S8000631, CVE-2013-1476: Restrict access to class constructor
S8001235, CVE-2013-0434: Improve JAXP HTTP handling
S8001242: Improve RMI HTTP conformance
S8001307: Modify ACC_SUPER behavior
S8001972, CVE-2013-1478: Improve image processing
S8002325, CVE-2013-1480: Improve management of images

icedtea6-1.11.5:
S6631398, CVE-2012-3216: FilePermission improved path checking
S7093490: adjust package access in rmiregistry
S7143535, CVE-2012-5068: ScriptEngine corrected permissions
S7167656, CVE-2012-5077: Multiple Seeders are being created
S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types
S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
S7172522, CVE-2012-5072: Improve DomainCombiner checking
S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
S7189103, CVE-2012-5069: Executors needs to maintain state
S7189490: More improvements to DomainCombiner checking
S7189567, CVE-2012-5085: java net obselete protocol
S7192975, CVE-2012-5071: Conditional usage check is wrong
S7195194, CVE-2012-5084: Better data validation for Swing
S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance
S7198296, CVE-2012-5089: Refactor classloader usage
S7158800: Improve storage of symbol tables
S7158801: Improve VM CompileOnly option
S7158804: Improve config file parsing
S7176337: Additional changes needed for 7158801 fix
S7198606, CVE-2012-4416: Improve VM optimization

Revision 5c5379b9 (diff)
Added by Natanael Copa about 6 years ago

main/openjdk: security upgrade to icedtea 1.11.11

fixes #1801

icedtea6-1.11.11:
RH952389: Temporary files created with insecure permissions

icedtea6-1.11.10:
S6657673, CVE-2013-1518: Issues with JAXP
S7200507: Refactor Introspector internals
S8000724, CVE-2013-2417: Improve networking serialization
S8001031, CVE-2013-2419: Better font processing
S8001040, CVE-2013-1537: Rework RMI model
S8001322: Refactor deserialization
S8001329, CVE-2013-1557: Augment RMI logging
S8003335: Better handling of Finalizer thread
S8003445: Adjust JAX-WS to focus on API
S8003543, CVE-2013-2415: Improve processing of MTOM attachments
S8004261: Improve input validation
S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames
S8004986, CVE-2013-2383: Better handling of glyph table
S8004987, CVE-2013-2384: Improve font layout
S8004994, CVE-2013-1569: Improve checking of glyph table
S8005432: Update access to JAX-WS
S8005943: (process) Improved Runtime.exec
S8006309: More reliable control panel operation
S8006435, CVE-2013-2424: Improvements in JMX
S8006790: Improve checking for windows
S8006795: Improve font warning messages
S8007406: Improve accessibility of AccessBridge
S8007617, CVE-2013-2420: Better validation of images
S8007667, CVE-2013-2430: Better image reading
S8007918, CVE-2013-2429: Better image writing
S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap
S8009305, CVE-2013-0401: Improve AWT data transfer
S8009699, CVE-2013-2421: Methodhandle lookup
S8009814, CVE-2013-1488: Better driver management
S8009857, CVE-2013-2422: Problem with plugin

icedtea6-1.11.9:
S8007014, CVE-2013-0809: Improve image handling
S8007675, CVE-2013-1493: Improve color conversion

icedtea6-1.11.8:
S8006446, CVE-2013-1486: Restrict MBeanServer access
S8006777, CVE-2013-0169: Improve TLS handling of invalid messages
S8007688: Blacklist known bad certificate

icedtea6-1.11.7:
(bugfixes only)

icedtea6-1.11.6:
S6563318, CVE-2013-0424: RMI data sanitization
S6664509, CVE-2013-0425: Add logging context
S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time
S6776941: CVE-2013-0427: Improve thread pool shutdown
S7141694, CVE-2013-0429: Improving CORBA internals
S7173145: Improve in-memory representation of splashscreens
S7186945: Unpack200 improvement
S7186946: Refine unpacker resource usage
S7186948: Improve Swing data validation
S7186952, CVE-2013-0432: Improve clipboard access
S7186954: Improve connection performance
S7186957: Improve Pack200 data validation
S7192392, CVE-2013-0443: Better validation of client keys
S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
S7192977, CVE-2013-0442: Issue in toolkit thread
S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies
S7200491: Tighten up JTable layout code
S7200500: Launcher better input validation
S7201064: Better dialogue checking
S7201066, CVE-2013-0441: Change modifiers on unused fields
S7201068, CVE-2013-0435: Better handling of UI elements
S7201070: Serialization to conform to protocol
S7201071, CVE-2013-0433: InetSocketAddress serialization issue
S8000210: Improve JarFile code quality
S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
S8000540, CVE-2013-1475: Improve IIOP type reuse management
S8000631, CVE-2013-1476: Restrict access to class constructor
S8001235, CVE-2013-0434: Improve JAXP HTTP handling
S8001242: Improve RMI HTTP conformance
S8001307: Modify ACC_SUPER behavior
S8001972, CVE-2013-1478: Improve image processing
S8002325, CVE-2013-1480: Improve management of images

icedtea6-1.11.5:
S6631398, CVE-2012-3216: FilePermission improved path checking
S7093490: adjust package access in rmiregistry
S7143535, CVE-2012-5068: ScriptEngine corrected permissions
S7167656, CVE-2012-5077: Multiple Seeders are being created
S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types
S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
S7172522, CVE-2012-5072: Improve DomainCombiner checking
S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
S7189103, CVE-2012-5069: Executors needs to maintain state
S7189490: More improvements to DomainCombiner checking
S7189567, CVE-2012-5085: java net obselete protocol
S7192975, CVE-2012-5071: Conditional usage check is wrong
S7195194, CVE-2012-5084: Better data validation for Swing
S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance
S7198296, CVE-2012-5089: Refactor classloader usage
S7158800: Improve storage of symbol tables
S7158801: Improve VM CompileOnly option
S7158804: Improve config file parsing
S7176337: Additional changes needed for 7158801 fix
S7198606, CVE-2012-4416: Improve VM optimization
(cherry picked from commit 871dd194e68719bcef84b37a602e0d01884ab2b6)

History

#1 Updated by Natanael Copa about 6 years ago

I am struggling with this...

both icedtea6-1.11.10 and icedtea6-1.11.11 fails with this:

Checking patches/ecj/spp.patch
Applying patches/ecj/spp.patch
patching file openjdk-ecj/jdk/make/tools/src/build/tools/spp/Spp.java
Checking patches/ecj/jopt.patch
Applying patches/ecj/jopt.patch
patching file openjdk-ecj/corba/make/common/shared/Defs-java.gmk
patching file openjdk-ecj/jdk/make/common/shared/Defs-java.gmk
Checking patches/ecj/jaxp-dependency.patch
Applying patches/ecj/jaxp-dependency.patch
patching file openjdk-ecj/jaxws/build.properties
patching file openjdk-ecj/jaxws/build.xml
Hunk #1 succeeded at 124 with fuzz 1 (offset 9 lines).
Checking patches/ecj/bootver.patch
Applying patches/ecj/bootver.patch
patching file openjdk-ecj/jdk/make/common/shared/Platform.gmk
Hunk #1 succeeded at 87 with fuzz 1 (offset -1 lines).
Checking patches/ecj/getannotation-cast.patch
Applying patches/ecj/getannotation-cast.patch
patching file openjdk/jdk/src/share/classes/com/sun/jmx/mbeanserver/OpenConverter.java
patching file openjdk/jdk/src/share/classes/java/beans/MetaData.java
Hunk #1 succeeded at 1604 (offset -24 lines).
Checking patches/ecj/override.patch
Applying patches/ecj/override.patch
patching file openjdk-ecj/jdk/src/share/classes/javax/swing/plaf/synth/SynthComboBoxUI.java
patching file openjdk-ecj/jdk/src/share/classes/javax/swing/plaf/synth/SynthLookAndFeel.java
Hunk #1 succeeded at 839 (offset 7 lines).
Hunk #2 succeeded at 907 (offset 7 lines).
Hunk #3 succeeded at 923 (offset 7 lines).
patching file openjdk-ecj/jdk/src/share/classes/javax/swing/plaf/synth/SynthTreeUI.java
patching file openjdk-ecj/jdk/src/share/classes/sun/swing/plaf/synth/SynthFileChooserUIImpl.java
patching file openjdk-ecj/jdk/src/share/classes/sun/security/provider/certpath/OCSPResponse.java
patching file openjdk-ecj/jdk/src/share/classes/sun/net/www/protocol/https/HttpsClient.java
patching file openjdk-ecj/jdk/src/share/classes/sun/security/x509/X509CRLEntryImpl.java
patching file openjdk-ecj/jdk/src/share/classes/sun/security/x509/X509CRLImpl.java
patching file openjdk-ecj/jdk/src/share/classes/javax/management/remote/rmi/RMIConnectionImpl.java
patching file openjdk-ecj/jdk/src/share/classes/sun/security/pkcs11/P11Key.java
patching file openjdk-ecj/jaxws/drop_included/jaxws_src/src/com/sun/xml/internal/org/jvnet/mimepull/MemoryData.java
patching file openjdk-ecj/jaxws/drop_included/jaxws_src/src/com/sun/xml/internal/ws/client/WSServiceDelegate.java
patching file openjdk-ecj/jdk/src/share/classes/com/sun/media/sound/AbstractMidiDevice.java
Checking patches/ecj/xsltproc.patch
Applying patches/ecj/xsltproc.patch
patching file openjdk-ecj/hotspot/make/linux/makefiles/jvmti.make
Checking patches/ecj/jaxws-getdtdtype.patch
1 out of 1 hunk FAILED
ERROR patch patches/ecj/jaxws-getdtdtype.patch FAILED!
WARNING make clean-patch before retrying a fix
make: *** [stamps/patch-ecj.stamp] Error 2
make: *** Waiting for unfinished jobs....

#2 Updated by Natanael Copa about 6 years ago

Natanael Copa wrote:

I am struggling with this...

I have resolved it. It required a gcc-java paxctl and a patch that applies paxctl earler during the java build.
A commit is on the way.

#3 Updated by Natanael Copa about 6 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#4 Updated by Natanael Copa about 6 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF