CVE-2015-2632: Integer Overflow
First published: Mon Jul 13 2015(Updated: )
An integer overflow flaw, leading to out-of-bounds read, was found in the LETableReference's verifyLength() method. A specially crafted file could cause an application using ICU to parse untrusted font files to perform an invalid memory access, leading to crash and possibly disclosure of portion of application memory. ICU code is embedded the 2D component in OpenJDK and used by FontManager. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions.
Credit: secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle JDK | =1.6.0-update95 | |
| Oracle JDK | =1.7.0-update80 | |
| Oracle JDK | =1.8.0-update45 | |
| Oracle JRE | =1.6.0-update_95 | |
| Oracle JRE | =1.7.0-update_80 | |
| Oracle JRE | =1.8.0-update_45 | |
| debian/icu | 67.1-7 72.1-3 72.1-5 | |
| debian/openjdk-8 | 8u432-b06-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixJAVA
- https://rhn.redhat.com/errata/RHSA-2015-1230.html
- https://rhn.redhat.com/errata/RHSA-2015-1229.html
- https://rhn.redhat.com/errata/RHSA-2015-1228.html
- http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/efc8652da937
- https://rhn.redhat.com/errata/RHSA-2015-1243.html
- https://rhn.redhat.com/errata/RHSA-2015-1242.html
- https://rhn.redhat.com/errata/RHSA-2015-1241.html
- https://rhn.redhat.com/errata/RHSA-2015-1486.html
- https://rhn.redhat.com/errata/RHSA-2015-1485.html
- https://rhn.redhat.com/errata/RHSA-2015-1488.html
- https://rhn.redhat.com/errata/RHSA-2015-1526.html
- https://rhn.redhat.com/errata/RHSA-2015-1544.html
- https://rhn.redhat.com/errata/RHSA-2015-1604.html
- http://bugs.icu-project.org/trac/ticket/11865
- https://bugzilla.redhat.com/show_bug.cgi?id=1242394
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
- http://rhn.redhat.com/errata/RHSA-2015-1228.html
- http://rhn.redhat.com/errata/RHSA-2015-1229.html
- http://rhn.redhat.com/errata/RHSA-2015-1230.html
- http://rhn.redhat.com/errata/RHSA-2015-1241.html
- http://rhn.redhat.com/errata/RHSA-2015-1242.html
- http://rhn.redhat.com/errata/RHSA-2015-1243.html
- http://rhn.redhat.com/errata/RHSA-2015-1485.html
- http://rhn.redhat.com/errata/RHSA-2015-1486.html
- http://rhn.redhat.com/errata/RHSA-2015-1488.html
- http://rhn.redhat.com/errata/RHSA-2015-1526.html
- http://rhn.redhat.com/errata/RHSA-2015-1544.html
- http://rhn.redhat.com/errata/RHSA-2015-1604.html
- http://www.debian.org/security/2015/dsa-3316
- http://www.debian.org/security/2015/dsa-3339
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
- http://www.securityfocus.com/bid/75861
- http://www.securitytracker.com/id/1032910
- http://www.ubuntu.com/usn/USN-2696-1
- http://www.ubuntu.com/usn/USN-2706-1
- http://www.ubuntu.com/usn/USN-2740-1
- https://security.gentoo.org/glsa/201603-11
- https://security.gentoo.org/glsa/201603-14
- https://security.gentoo.org/glsa/201701-58
- https://launchpad.net/bugs/cve/CVE-2015-2632
- https://security-tracker.debian.org/tracker/CVE-2015-2632
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2632
- https://nvd.nist.gov/vuln/detail/CVE-2015-2632
- https://ubuntu.com/security/CVE-2015-2632
Frequently Asked Questions
What is the vulnerability ID for this Oracle Java SE vulnerability?
The vulnerability ID for this Oracle Java SE vulnerability is CVE-2015-2632.
What software versions are affected by this vulnerability?
Oracle Java SE 6u95, 7u80, and 8u45 are affected by this vulnerability.
How can this vulnerability affect confidentiality?
This vulnerability can affect confidentiality through unknown vectors related to 2D.
What is the severity level of this vulnerability?
The severity level of this vulnerability is medium.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following references: [Oracle](http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixJAVA), [Red Hat](https://rhn.redhat.com/errata/RHSA-2015-1230.html), [Red Hat](https://rhn.redhat.com/errata/RHSA-2015-1229.html).
- collector/redhat-bugzilla
- alias/CVE-2015-2632
- collector/nvd-index
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/first-publish-date
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/remedy
- agent/weakness
- agent/description
- agent/references
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/usn-cve
- source/Ubuntu
- vendor/oracle
- canonical/oracle jdk
- version/oracle jdk/1.6.0-update95
- version/oracle jdk/1.7.0-update80
- version/oracle jdk/1.8.0-update45
- canonical/oracle jre
- version/oracle jre/1.6.0-update_95
- version/oracle jre/1.7.0-update_80
- version/oracle jre/1.8.0-update_45
- package-manager/debian