CVE-2018-2794
First published: Fri Apr 13 2018(Updated: )
It was discovered that the Security component of OpenJDK did not restrict which classes could be used when deserializing keys form the JCEKS key stores. A specially crafted JCEKS key store could possibly use this flaw to execute arbitrary code with the privileges of an application reading data form the key store. The fix adds support for a new security property jceks.key.serialFilter which can be used to specify classes that can be used when deserializing data from the JCEKS key stores.
Credit: secalert_us@oracle.com secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/openjdk-8 | 8u432-b06-2 | |
| Oracle Java SE 7 | =1.6.0-update181 | |
| Oracle Java SE 7 | =1.7.0-update171 | |
| Oracle Java SE 7 | =1.8.0-update162 | |
| Oracle Java SE 7 | =10 | |
| Oracle JRE | =1.6.0-update181 | |
| Oracle JRE | =1.7.0-update171 | |
| Oracle JRE | =1.8.0-update162 | |
| Oracle JRE | =10 | |
| Oracle Java SE | =r28.3.17 | |
| Red Hat Satellite | =5.6 | |
| Red Hat Satellite | =5.7 | |
| Red Hat Satellite | =5.8 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Desktop | =7.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Server | =7.0 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.5 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Workstation | =6.0 | |
| Red Hat Enterprise Linux Workstation | =7.0 | |
| Debian Linux | =8.0 | |
| Debian Linux | =9.0 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =17.10 | |
| HP P9000 Command View Advanced Edition Software | ||
| Schneider Electric EcoStruxure Data Center Expert | <7.6.0 | |
| Oracle Java SE 7 | =1.10.0 | |
| Oracle JRE | =1.10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
- http://www.securityfocus.com/bid/103817
- http://www.securitytracker.com/id/1040697
- https://access.redhat.com/errata/RHSA-2018:1188
- https://access.redhat.com/errata/RHSA-2018:1191
- https://access.redhat.com/errata/RHSA-2018:1201
- https://access.redhat.com/errata/RHSA-2018:1202
- https://access.redhat.com/errata/RHSA-2018:1203
- https://access.redhat.com/errata/RHSA-2018:1204
- https://access.redhat.com/errata/RHSA-2018:1205
- https://access.redhat.com/errata/RHSA-2018:1206
- https://access.redhat.com/errata/RHSA-2018:1270
- https://access.redhat.com/errata/RHSA-2018:1278
- https://access.redhat.com/errata/RHSA-2018:1721
- https://access.redhat.com/errata/RHSA-2018:1722
- https://access.redhat.com/errata/RHSA-2018:1723
- https://access.redhat.com/errata/RHSA-2018:1724
- https://access.redhat.com/errata/RHSA-2018:1974
- https://access.redhat.com/errata/RHSA-2018:1975
- https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
- https://security.gentoo.org/glsa/201903-14
- https://security.netapp.com/advisory/ntap-20180419-0001/
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03857en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03915en_us
- https://usn.ubuntu.com/3644-1/
- https://usn.ubuntu.com/3691-1/
- https://www.debian.org/security/2018/dsa-4185
- https://www.debian.org/security/2018/dsa-4225
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03857en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03915en_us
- https://launchpad.net/bugs/cve/CVE-2018-2794
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA
- http://www.oracle.com/technetwork/java/javase/8u171-relnotes-4308888.html
- http://www.oracle.com/technetwork/java/javaseproducts/documentation/javase7supportreleasenotes-1601161.html#R170_181
- http://www.oracle.com/technetwork/java/javase/documentation/overview-156328.html#R160_191
- http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/6cbe2e5989a8
- http://hg.openjdk.java.net/jdk8u/jdk8u/langtools/rev/5e864878da06
- https://bugzilla.redhat.com/show_bug.cgi?id=1567126
- https://security-tracker.debian.org/tracker/CVE-2018-2794
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2794
- https://nvd.nist.gov/vuln/detail/CVE-2018-2794
- https://ubuntu.com/security/CVE-2018-2794
Frequently Asked Questions
What is CVE-2018-2794?
CVE-2018-2794 is a vulnerability in the Java SE JRockit component of Oracle Java SE (subcomponent: Security).
Which versions of Java SE are affected by CVE-2018-2794?
Java SE: 6u181, 7u171, 8u162, 10
How severe is CVE-2018-2794?
CVE-2018-2794 has a severity rating of 7.7 (high).
How can I fix CVE-2018-2794?
To fix CVE-2018-2794, update to the following versions: openjdk-8u382-ga-2, Oracle JDK 1.6.0-update181, 1.7.0-update171, 1.8.0-update162, 1.10.0, or Oracle JRockit r28.3.17.
Where can I find more information about CVE-2018-2794?
You can find more information about CVE-2018-2794 on the Oracle Security Advisory and SecurityFocus websites.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-2794
- agent/first-publish-date
- agent/severity
- agent/remedy
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-api
- collector/nvd-index
- package-manager/debian
- vendor/oracle
- canonical/oracle java se 7
- version/oracle java se 7/1.6.0-update181
- version/oracle java se 7/1.7.0-update171
- version/oracle java se 7/1.8.0-update162
- version/oracle java se 7/10
- canonical/oracle jre
- version/oracle jre/1.6.0-update181
- version/oracle jre/1.7.0-update171
- version/oracle jre/1.8.0-update162
- version/oracle jre/10
- canonical/oracle java se
- version/oracle java se/r28.3.17
- vendor/redhat
- canonical/red hat satellite
- version/red hat satellite/5.6
- version/red hat satellite/5.7
- version/red hat satellite/5.8
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- version/red hat enterprise linux desktop/7.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- version/red hat enterprise linux server/7.0
- version/red hat enterprise linux server/7.6
- version/red hat enterprise linux server/7.5
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0
- version/red hat enterprise linux workstation/7.0
- vendor/debian
- canonical/debian linux
- version/debian linux/8.0
- version/debian linux/9.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/17.10
- vendor/hp
- canonical/hp p9000 command view advanced edition software
- vendor/schneider-electric
- canonical/schneider electric ecostruxure data center expert
- version/oracle java se 7/1.10.0
- version/oracle jre/1.10.0