First published: Thu Apr 14 2016(Updated: )
Adam Gowdiak (Security Explorations) reported that the fix for IBM JDK issue <a href="https://access.redhat.com/security/cve/CVE-2013-5456">CVE-2013-5456</a> (<a class="bz_bug_link bz_status_CLOSED bz_closed bz_public " title="CLOSED ERRATA - CVE-2013-5456 IBM JDK: unspecified sandbox bypass (ORB)" href="show_bug.cgi?id=1027748">bug 1027748</a>), also known as "Issue 70", did not correctly address the problem. Applied fix only restricted access to the vulnerable package, rather then addressing the underlying problem of running untrusted code inside doPrivileged block. Report: <a href="http://seclists.org/fulldisclosure/2016/Apr/43">http://seclists.org/fulldisclosure/2016/Apr/43</a> Write-up of the issue: <a href="http://www.security-explorations.com/materials/SE-2012-01-IBM-5.pdf">http://www.security-explorations.com/materials/SE-2012-01-IBM-5.pdf</a> Proof-of-concept code: <a href="http://www.security-explorations.com/materials/se-2012-01-70.2.zip">http://www.security-explorations.com/materials/se-2012-01-70.2.zip</a>
Credit: psirt@us.ibm.com psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/java | <1.7.0-ibm-1:1.7.0.9.40-1jpp.1.el5 | 1.7.0-ibm-1:1.7.0.9.40-1jpp.1.el5 |
redhat/java | <1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el5 | 1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el5 |
redhat/java | <1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el6_7 | 1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el6_7 |
redhat/java | <1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el6_7 | 1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el6_7 |
redhat/java | <1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el6 | 1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el6 |
redhat/java | <1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el7 | 1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el7 |
redhat/java | <1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el7 | 1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el7 |
redhat/spacewalk-java | <0:2.0.2-109.el6 | 0:2.0.2-109.el6 |
redhat/java | <1.7.1-ibm-1:1.7.1.4.1-1jpp.1.el6_8 | 1.7.1-ibm-1:1.7.1.4.1-1jpp.1.el6_8 |
redhat/spacewalk-java | <0:2.3.8-146.el6 | 0:2.3.8-146.el6 |
Novell Suse Linux Enterprise Software Development Kit | =11.0-sp4 | |
Novell Suse Linux Enterprise Software Development Kit | =12.0 | |
Novell Suse Linux Enterprise Software Development Kit | =12.0-sp1 | |
Novell Suse Linux Enterprise Module For Legacy Software | =12 | |
Novell Suse Linux Enterprise Server | =11.0-sp2 | |
Novell Suse Linux Enterprise Server | =11.0-sp3 | |
Novell Suse Linux Enterprise Server | =11.0-sp4 | |
Novell Suse Linux Enterprise Server | =12.0 | |
Novell Suse Linux Enterprise Server | =12.0-sp1 | |
Novell Suse Manager | =2.1 | |
Novell Suse Manager Proxy | =2.1 | |
Novell Suse Openstack Cloud | =5 | |
Ibm Java Sdk | >=6.0.0.0<6.0.16.25 | |
Ibm Java Sdk | >=6.1.0.0<6.1.8.25 | |
Ibm Java Sdk | >=7.0.0.0<7.0.9.40 | |
Ibm Java Sdk | >=7.1.0.0<7.1.3.40 | |
Ibm Java Sdk | >=8.0.0.0<8.0.3.0 | |
Redhat Satellite | =5.6 | |
Redhat Satellite | =5.7 | |
Redhat Enterprise Linux Desktop | =5.0 | |
Redhat Enterprise Linux Desktop | =6.0 | |
Redhat Enterprise Linux Desktop | =7.0 | |
Redhat Enterprise Linux Hpc Node Supplementary | =6.0 | |
Redhat Enterprise Linux Hpc Node Supplementary | =7.0 | |
Redhat Enterprise Linux Server | =6.0 | |
Redhat Enterprise Linux Server | =7.0 | |
Redhat Enterprise Linux Server Eus | =6.7 | |
Redhat Enterprise Linux Server Eus | =7.2 | |
Redhat Enterprise Linux Server Eus | =7.3 | |
Redhat Enterprise Linux Server Eus | =7.4 | |
Redhat Enterprise Linux Server Eus | =7.5 | |
Redhat Enterprise Linux Workstation | =5.0 | |
Redhat Enterprise Linux Workstation | =6.0 | |
Redhat Enterprise Linux Workstation | =7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)