REDHAT-BUG-594497
First published: Thu May 20 2010(Updated: )
Dan Rosenberg reported a directory traversal flaw in fastjar that allows an attacker, who is able to convince a victim to extract a malicious .jar file, to overwrite arbitrary files on disk without prompting the victim. The files to be overwritten must be writable by the user extracting the .jar file. This issue has been assigned the name <a href="https://access.redhat.com/security/cve/CVE-2010-0831">CVE-2010-0831</a>, and it is possible that it is due to an incomplete fix for <a href="https://access.redhat.com/security/cve/CVE-2006-3619">CVE-2006-3619</a> (<a class="bz_bug_link bz_status_CLOSED bz_closed bz_public " title="CLOSED ERRATA - CVE-2006-3619 Directory traversal issue in fastjar" href="show_bug.cgi?id=198912">bug #198912</a>). Upon investigation, the same problem exists in the jar archiver as provided by OpenJDK and java-1.4.2-gcj-compat.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Fastjar | ||
| OpenJDK 8 | ||
| Unknown java-1.4.2-gcj-compat |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2010-0831
- https://access.redhat.com/security/cve/CVE-2006-3619
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=198912
- https://access.redhat.com/security/cve/CVE-2005-1080
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=415508
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=415508&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=415514&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=415514&action=edit
- https://launchpad.net/bugs/540575
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=601823
- http://www.openwall.com/lists/oss-security/2010/06/08/2
- https://access.redhat.com/security/cve/CVE-2010-2322
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=606442
- http://admin.fedoraproject.org/updates/gcc-4.4.4-9.fc13
- http://admin.fedoraproject.org/updates/gcc-4.4.4-10.fc12,libtool-2.2.6-18.fc12.1
- https://rhn.redhat.com/errata/RHSA-2011-0025.html
- https://bugzilla.redhat.com/show_bug.cgi?id=594497
Frequently Asked Questions
What is the severity of REDHAT-BUG-594497?
REDHAT-BUG-594497 has a high severity rating due to the potential for arbitrary file overwriting without user consent.
How do I fix REDHAT-BUG-594497?
To fix REDHAT-BUG-594497, update the fastjar and OpenJDK packages to their latest versions where the vulnerability is patched.
What systems are affected by REDHAT-BUG-594497?
Systems running Red Hat fastjar and Oracle OpenJDK are affected by REDHAT-BUG-594497.
What type of vulnerability is REDHAT-BUG-594497?
REDHAT-BUG-594497 is a directory traversal vulnerability that allows file overwriting.
Who reported the vulnerability REDHAT-BUG-594497?
The directory traversal flaw in fastjar was reported by Dan Rosenberg.
- agent/type
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-0831
- agent/first-publish-date
- agent/source
- agent/references
- agent/severity
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/red hat fastjar
- vendor/oracle
- canonical/openjdk 8
- vendor/unknown
- canonical/unknown java-1.4.2-gcj-compat