Test ID:	1.3.6.1.4.1.25623.1.0.844002
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3975-1)
Summary:	The remote host is missing an update for the 'openjdk-8, openjdk-lts' package(s) announced via the USN-3975-1 advisory.
Description:	Summary: The remote host is missing an update for the 'openjdk-8, openjdk-lts' package(s) announced via the USN-3975-1 advisory. Vulnerability Insight: It was discovered that the BigDecimal implementation in OpenJDK performed excessive computation when given certain values. An attacker could use this to cause a denial of service (excessive CPU usage). (CVE-2019-2602) Corwin de Boor and Robert Xiao discovered that the RMI registry implementation in OpenJDK did not properly select the correct skeleton class in some situations. An attacker could use this to possibly escape Java sandbox restrictions. (CVE-2019-2684) Mateusz Jurczyk discovered a vulnerability in the 2D component of OpenJDK. An attacker could use this to possibly escape Java sandbox restrictions. This issue only affected OpenJDK 8 in Ubuntu 16.04 LTS. (CVE-2019-2697) Mateusz Jurczyk discovered a vulnerability in the font layout engine of OpenJDK's 2D component. An attacker could use this to possibly escape Java sandbox restrictions. This issue only affected OpenJDK 8 in Ubuntu 16.04 LTS. (CVE-2019-2698) Affected Software/OS: 'openjdk-8, openjdk-lts' package(s) on Ubuntu 16.04, Ubuntu 18.04, Ubuntu 18.10, Ubuntu 19.04. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-2602 Bugtraq: 20190530 [SECURITY] [DSA 4453-1] openjdk-8 security update (Google Search) https://seclists.org/bugtraq/2019/May/75 Debian Security Information: DSA-4453 (Google Search) https://www.debian.org/security/2019/dsa-4453 https://security.gentoo.org/glsa/201908-10 http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html https://lists.debian.org/debian-lts-announce/2019/05/msg00011.html RedHat Security Advisories: RHBA-2019:0959 https://access.redhat.com/errata/RHBA-2019:0959 RedHat Security Advisories: RHSA-2019:1146 https://access.redhat.com/errata/RHSA-2019:1146 RedHat Security Advisories: RHSA-2019:1163 https://access.redhat.com/errata/RHSA-2019:1163 RedHat Security Advisories: RHSA-2019:1164 https://access.redhat.com/errata/RHSA-2019:1164 RedHat Security Advisories: RHSA-2019:1165 https://access.redhat.com/errata/RHSA-2019:1165 RedHat Security Advisories: RHSA-2019:1166 https://access.redhat.com/errata/RHSA-2019:1166 RedHat Security Advisories: RHSA-2019:1238 https://access.redhat.com/errata/RHSA-2019:1238 RedHat Security Advisories: RHSA-2019:1325 https://access.redhat.com/errata/RHSA-2019:1325 RedHat Security Advisories: RHSA-2019:1518 https://access.redhat.com/errata/RHSA-2019:1518 SuSE Security Announcement: openSUSE-SU-2019:1327 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00007.html SuSE Security Announcement: openSUSE-SU-2019:1438 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00058.html SuSE Security Announcement: openSUSE-SU-2019:1439 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00059.html SuSE Security Announcement: openSUSE-SU-2019:1500 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00013.html https://usn.ubuntu.com/3975-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-2684 https://lists.apache.org/thread.html/c58d6c3b49c615916b163809f963a55421cac2264885739508e68108@%3Cannounce.apache.org%3E https://lists.apache.org/thread.html/rcd7544b24d8fc32b7950ec4c117052410b661babaa857fb1fc641152@%3Cdev.cassandra.apache.org%3E https://lists.apache.org/thread.html/rcd7544b24d8fc32b7950ec4c117052410b661babaa857fb1fc641152@%3Cuser.cassandra.apache.org%3E https://lists.apache.org/thread.html/r718e01f61b35409a4f7a3ccbc1cb5136a1558a9f9c2cb8d4ca9be1ce@%3Cuser.cassandra.apache.org%3E https://lists.apache.org/thread.html/r1fd117082b992e7d43c1286e966c285f98aa362e685695d999ff42f7@%3Cuser.cassandra.apache.org%3E https://lists.apache.org/thread.html/rab8d90d28f944d84e4d7852f355a25c89451ae02c2decc4d355a9cfc@%3Cuser.cassandra.apache.org%3E http://www.openwall.com/lists/oss-security/2020/09/01/4 https://lists.apache.org/thread.html/43530b91506e2e0c11cfbe691173f5df8c48f51b98262426d7493b67@%3Cannounce.tomcat.apache.org%3E https://lists.apache.org/thread.html/f7f54b4888060d99f59993f006e25005a2b58db0c07ff866bdcd6f17@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/38a01302c92ae513910d8c851a2d111736565bd698be4e3af3e4c063@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/71bd3e4e222479c266eaafc8d0c171ef5782a69b52f68df11b650ed7@%3Cusers.tomcat.apache.org%3E Common Vulnerability Exposure (CVE) ID: CVE-2019-2697 Common Vulnerability Exposure (CVE) ID: CVE-2019-2698
Copyright	Copyright (C) 2019 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.