Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0241)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2019.0241

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2019-0241)

Resumen: The remote host is missing an update for the 'java-1.8.0-openjdk' package(s) announced via the MGASA-2019-0241 advisory.

Descripción: Summary:
The remote host is missing an update for the 'java-1.8.0-openjdk' package(s) announced via the MGASA-2019-0241 advisory.

Vulnerability Insight:
The updated packages fix several bugs and some security issues:

Side-channel attack risks in Elliptic Curve (EC) cryptography.
(CVE-2019-2745)

Insufficient checks of suppressed exceptions in deserialization.
(CVE-2019-2762)

Unbounded memory allocation during deserialization in Collections.
(CVE-2019-2769)

Insufficient restriction of privileges in AccessController.
(CVE-2019-2786)

Missing URL format validation. (CVE-2019-2816)

Missing array bounds check in crypto providers. (CVE-2019-2842)

Affected Software/OS:
'java-1.8.0-openjdk' package(s) on Mageia 6, Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-2745
http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
https://lists.debian.org/debian-lts-announce/2019/08/msg00020.html
SuSE Security Announcement: openSUSE-SU-2019:1912 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00044.html
SuSE Security Announcement: openSUSE-SU-2019:1916 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html
https://usn.ubuntu.com/4080-1/
Common Vulnerability Exposure (CVE) ID: CVE-2019-2762
RedHat Security Advisories: RHSA-2019:2494
https://access.redhat.com/errata/RHSA-2019:2494
RedHat Security Advisories: RHSA-2019:2495
https://access.redhat.com/errata/RHSA-2019:2495
RedHat Security Advisories: RHSA-2019:2585
https://access.redhat.com/errata/RHSA-2019:2585
RedHat Security Advisories: RHSA-2019:2590
https://access.redhat.com/errata/RHSA-2019:2590
RedHat Security Advisories: RHSA-2019:2592
https://access.redhat.com/errata/RHSA-2019:2592
RedHat Security Advisories: RHSA-2019:2737
https://access.redhat.com/errata/RHSA-2019:2737
https://usn.ubuntu.com/4083-1/
Common Vulnerability Exposure (CVE) ID: CVE-2019-2769
Common Vulnerability Exposure (CVE) ID: CVE-2019-2786
Common Vulnerability Exposure (CVE) ID: CVE-2019-2816
Common Vulnerability Exposure (CVE) ID: CVE-2019-2842

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2019.0241
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2019-0241)
Resumen:	The remote host is missing an update for the 'java-1.8.0-openjdk' package(s) announced via the MGASA-2019-0241 advisory.
Descripción:	Summary: The remote host is missing an update for the 'java-1.8.0-openjdk' package(s) announced via the MGASA-2019-0241 advisory. Vulnerability Insight: The updated packages fix several bugs and some security issues: Side-channel attack risks in Elliptic Curve (EC) cryptography. (CVE-2019-2745) Insufficient checks of suppressed exceptions in deserialization. (CVE-2019-2762) Unbounded memory allocation during deserialization in Collections. (CVE-2019-2769) Insufficient restriction of privileges in AccessController. (CVE-2019-2786) Missing URL format validation. (CVE-2019-2816) Missing array bounds check in crypto providers. (CVE-2019-2842) Affected Software/OS: 'java-1.8.0-openjdk' package(s) on Mageia 6, Mageia 7. Solution: Please install the updated package(s). CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-2745 http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html https://lists.debian.org/debian-lts-announce/2019/08/msg00020.html SuSE Security Announcement: openSUSE-SU-2019:1912 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00044.html SuSE Security Announcement: openSUSE-SU-2019:1916 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html https://usn.ubuntu.com/4080-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-2762 RedHat Security Advisories: RHSA-2019:2494 https://access.redhat.com/errata/RHSA-2019:2494 RedHat Security Advisories: RHSA-2019:2495 https://access.redhat.com/errata/RHSA-2019:2495 RedHat Security Advisories: RHSA-2019:2585 https://access.redhat.com/errata/RHSA-2019:2585 RedHat Security Advisories: RHSA-2019:2590 https://access.redhat.com/errata/RHSA-2019:2590 RedHat Security Advisories: RHSA-2019:2592 https://access.redhat.com/errata/RHSA-2019:2592 RedHat Security Advisories: RHSA-2019:2737 https://access.redhat.com/errata/RHSA-2019:2737 https://usn.ubuntu.com/4083-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-2769 Common Vulnerability Exposure (CVE) ID: CVE-2019-2786 Common Vulnerability Exposure (CVE) ID: CVE-2019-2816 Common Vulnerability Exposure (CVE) ID: CVE-2019-2842
Copyright	Copyright (C) 2022 Greenbone AG