CVE-2018-2794
First published: Fri Apr 13 2018(Updated: )
It was discovered that the Security component of OpenJDK did not restrict which classes could be used when deserializing keys form the JCEKS key stores. A specially crafted JCEKS key store could possibly use this flaw to execute arbitrary code with the privileges of an application reading data form the key store. The fix adds support for a new security property jceks.key.serialFilter which can be used to specify classes that can be used when deserializing data from the JCEKS key stores.
Credit: secalert_us@oracle.com secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle JDK | =1.6.0-update181 | |
| Oracle JDK | =1.7.0-update171 | |
| Oracle JDK | =1.8.0-update162 | |
| Oracle JDK | =1.10.0 | |
| Oracle JRE | =1.6.0-update181 | |
| Oracle JRE | =1.7.0-update171 | |
| Oracle JRE | =1.8.0-update162 | |
| Oracle JRE | =1.10.0 | |
| Oracle JRockit | =r28.3.17 | |
| Redhat Satellite | =5.6 | |
| Redhat Satellite | =5.7 | |
| Redhat Satellite | =5.8 | |
| Redhat Enterprise Linux Desktop | =6.0 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =6.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Server Aus | =7.6 | |
| Redhat Enterprise Linux Server Eus | =7.5 | |
| Redhat Enterprise Linux Server Eus | =7.6 | |
| Redhat Enterprise Linux Server Tus | =7.6 | |
| Redhat Enterprise Linux Workstation | =6.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =17.10 | |
| Hp Xp7 Command View | ||
| Schneider-electric Struxureware Data Center Expert | <7.6.0 | |
| Oracle JDK | =10 | |
| Oracle JRE | =10 | |
| debian/openjdk-8 | 8u422-b05-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
- http://www.securityfocus.com/bid/103817
- http://www.securitytracker.com/id/1040697
- https://access.redhat.com/errata/RHSA-2018:1188
- https://access.redhat.com/errata/RHSA-2018:1191
- https://access.redhat.com/errata/RHSA-2018:1201
- https://access.redhat.com/errata/RHSA-2018:1202
- https://access.redhat.com/errata/RHSA-2018:1203
- https://access.redhat.com/errata/RHSA-2018:1204
- https://access.redhat.com/errata/RHSA-2018:1205
- https://access.redhat.com/errata/RHSA-2018:1206
- https://access.redhat.com/errata/RHSA-2018:1270
- https://access.redhat.com/errata/RHSA-2018:1278
- https://access.redhat.com/errata/RHSA-2018:1721
- https://access.redhat.com/errata/RHSA-2018:1722
- https://access.redhat.com/errata/RHSA-2018:1723
- https://access.redhat.com/errata/RHSA-2018:1724
- https://access.redhat.com/errata/RHSA-2018:1974
- https://access.redhat.com/errata/RHSA-2018:1975
- https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
- https://security.gentoo.org/glsa/201903-14
- https://security.netapp.com/advisory/ntap-20180419-0001/
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03857en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03915en_us
- https://usn.ubuntu.com/3644-1/
- https://usn.ubuntu.com/3691-1/
- https://www.debian.org/security/2018/dsa-4185
- https://www.debian.org/security/2018/dsa-4225
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03857en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03915en_us
- https://launchpad.net/bugs/cve/CVE-2018-2794
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA
- http://www.oracle.com/technetwork/java/javase/8u171-relnotes-4308888.html
- http://www.oracle.com/technetwork/java/javaseproducts/documentation/javase7supportreleasenotes-1601161.html#R170_181
- http://www.oracle.com/technetwork/java/javase/documentation/overview-156328.html#R160_191
- http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/6cbe2e5989a8
- http://hg.openjdk.java.net/jdk8u/jdk8u/langtools/rev/5e864878da06
- https://bugzilla.redhat.com/show_bug.cgi?id=1567126
- https://security-tracker.debian.org/tracker/CVE-2018-2794
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2794
- https://nvd.nist.gov/vuln/detail/CVE-2018-2794
- https://ubuntu.com/security/CVE-2018-2794
Frequently Asked Questions
What is CVE-2018-2794?
CVE-2018-2794 is a vulnerability in the Java SE JRockit component of Oracle Java SE (subcomponent: Security).
Which versions of Java SE are affected by CVE-2018-2794?
Java SE: 6u181, 7u171, 8u162, 10
How severe is CVE-2018-2794?
CVE-2018-2794 has a severity rating of 7.7 (high).
How can I fix CVE-2018-2794?
To fix CVE-2018-2794, update to the following versions: openjdk-8u382-ga-2, Oracle JDK 1.6.0-update181, 1.7.0-update171, 1.8.0-update162, 1.10.0, or Oracle JRockit r28.3.17.
Where can I find more information about CVE-2018-2794?
You can find more information about CVE-2018-2794 on the Oracle Security Advisory and SecurityFocus websites.
- collector/nvd-index
- collector/nvd-api
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-2794
- agent/first-publish-date
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/remedy
- agent/author
- agent/description
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/oracle
- canonical/oracle jdk
- version/oracle jdk/1.6.0-update181
- version/oracle jdk/1.7.0-update171
- version/oracle jdk/1.8.0-update162
- version/oracle jdk/1.10.0
- canonical/oracle jre
- version/oracle jre/1.6.0-update181
- version/oracle jre/1.7.0-update171
- version/oracle jre/1.8.0-update162
- version/oracle jre/1.10.0
- canonical/oracle jrockit
- version/oracle jrockit/r28.3.17
- vendor/redhat
- canonical/redhat satellite
- version/redhat satellite/5.6
- version/redhat satellite/5.7
- version/redhat satellite/5.8
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/7.6
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/7.5
- version/redhat enterprise linux server eus/7.6
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/7.6
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0
- version/redhat enterprise linux workstation/7.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/17.10
- vendor/hp
- canonical/hp xp7 command view
- vendor/schneider-electric
- canonical/schneider-electric struxureware data center expert
- version/oracle jdk/10
- version/oracle jre/10
- package-manager/debian