Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 Tenable Network Security, Inc.SUSE_11_1_JAVA-1_6_0-OPENJDK-090922.NASL
HistorySep 25, 2009 - 12:00 a.m.

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1330)

2009-09-2500:00:00
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

This update of java-1_6_0-openjdk fixes the following issues :

  • CVE-2009-2670: OpenJDK Untrusted applet System properties access

  • CVE-2009-2671,CVE-2009-2672: OpenJDK Proxy mechanism information leaks

  • CVE-2009-2673: OpenJDK proxy mechanism allows non-authorized socket connections

  • CVE-2009-2674: Java Web Start Buffer JPEG processing integer overflow

  • CVE-2009-2675: Java Web Start Buffer unpack200 processing integer overflow

  • CVE-2009-2625: OpenJDK XML parsing Denial-Of-Service

  • CVE-2009-2475: OpenJDK information leaks in mutable variables

  • CVE-2009-2476: OpenJDK OpenType checks can be bypassed

  • CVE-2009-2689: OpenJDK JDK13Services grants unnecessary privileges

  • CVE-2009-2690: OpenJDK private variable information disclosure

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update java-1_6_0-openjdk-1330.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(41623);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-2475", "CVE-2009-2476", "CVE-2009-2625", "CVE-2009-2670", "CVE-2009-2671", "CVE-2009-2672", "CVE-2009-2673", "CVE-2009-2674", "CVE-2009-2675", "CVE-2009-2689", "CVE-2009-2690");

  script_name(english:"openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1330)");
  script_summary(english:"Check for the java-1_6_0-openjdk-1330 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of java-1_6_0-openjdk fixes the following issues :

  - CVE-2009-2670: OpenJDK Untrusted applet System
    properties access

  - CVE-2009-2671,CVE-2009-2672: OpenJDK Proxy mechanism
    information leaks

  - CVE-2009-2673: OpenJDK proxy mechanism allows
    non-authorized socket connections

  - CVE-2009-2674: Java Web Start Buffer JPEG processing
    integer overflow

  - CVE-2009-2675: Java Web Start Buffer unpack200
    processing integer overflow

  - CVE-2009-2625: OpenJDK XML parsing Denial-Of-Service

  - CVE-2009-2475: OpenJDK information leaks in mutable
    variables

  - CVE-2009-2476: OpenJDK OpenType checks can be bypassed

  - CVE-2009-2689: OpenJDK JDK13Services grants unnecessary
    privileges

  - CVE-2009-2690: OpenJDK private variable information
    disclosure"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=537969"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected java-1_6_0-openjdk packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(200, 264);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk-demo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk-javadoc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk-plugin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_6_0-openjdk-src");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/09/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/25");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-1.6_b16-0.1.3") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-demo-1.6_b16-0.1.3") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-devel-1.6_b16-0.1.3") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-javadoc-1.6_b16-0.1.3") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-plugin-1.6_b16-0.1.3") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"java-1_6_0-openjdk-src-1.6_b16-0.1.3") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "java-1_6_0-openjdk");
}
VendorProductVersionCPE
novellopensusejava-1_6_0-openjdkp-cpe:/a:novell:opensuse:java-1_6_0-openjdk
novellopensusejava-1_6_0-openjdk-demop-cpe:/a:novell:opensuse:java-1_6_0-openjdk-demo
novellopensusejava-1_6_0-openjdk-develp-cpe:/a:novell:opensuse:java-1_6_0-openjdk-devel
novellopensusejava-1_6_0-openjdk-javadocp-cpe:/a:novell:opensuse:java-1_6_0-openjdk-javadoc
novellopensusejava-1_6_0-openjdk-pluginp-cpe:/a:novell:opensuse:java-1_6_0-openjdk-plugin
novellopensusejava-1_6_0-openjdk-srcp-cpe:/a:novell:opensuse:java-1_6_0-openjdk-src
novellopensuse11.1cpe:/o:novell:opensuse:11.1

Related

nessus 56
openvas 68
centos 2
oraclelinux 3
redhat 10
fedora 2
securityvulns 2
ubuntu 1
suse 2
cve 12
prion 12
ubuntucve 10
veracode 11
zdi 1
seebug 2
osv 1
debiancve 1
debian 2
github 1
nessus
nessus
openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1330)
2009-09-25 00:00:00
Scientific Linux Security Update : java-1.6.0-openjdk on SL5.3 i386/x86_64
2012-08-01 00:00:00
Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2009:209)
2009-08-24 00:00:00
openvas
openvas
Oracle Linux Local Check: ELSA-2009-1201
2015-10-08 00:00:00
CentOS Update for java CESA-2009:1201 centos5 i386
2011-08-09 00:00:00
CentOS Update for java CESA-2009:1201 centos5 i386
2011-08-09 00:00:00
centos
centos
java security update
2009-08-09 04:11:10
xerces security update
2009-12-17 12:40:02
oraclelinux
oraclelinux
java-1.6.0-openjdk security and bug fix update
2009-08-06 00:00:00
xerces-j2 security update
2009-11-30 00:00:00
xerces-j2 security update
2011-06-08 00:00:00
redhat
redhat
(RHSA-2009:1201) Important: java-1.6.0-openjdk security and bug fix update
2009-08-06 00:00:00
(RHSA-2009:1236) Critical: java-1.5.0-ibm security update
2009-08-28 00:00:00
(RHSA-2009:1582) Critical: java-1.6.0-ibm security update
2009-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: java-1.6.0-openjdk-1.6.0.0-27.b16.fc11
2009-08-07 04:59:49
[SECURITY] Fedora 10 Update: java-1.6.0-openjdk-1.6.0.0-20.b16.fc10
2009-08-07 05:02:36
securityvulns
securityvulns
[USN-814-1] openjdk-6 vulnerabilities
2009-08-11 00:00:00
OpenJDK multiple security vulnerabilities
2009-08-11 00:00:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2009-08-11 00:00:00
suse
suse
remote code execution in java-1_5_0-sun,java-1_6_0-sun
2009-08-07 15:43:16
remote code execution in java-1_6_0-ibm
2009-11-04 15:26:34
cve
cve
CVE-2009-3403
2009-10-22 18:30:00
CVE-2009-2475
2009-08-10 18:30:00
CVE-2009-2675
2009-08-05 19:30:00
prion
prion
Code injection
2009-10-22 18:30:00
Design/Logic Flaw
2009-08-10 18:30:00
Design/Logic Flaw
2009-08-10 18:30:00
ubuntucve
ubuntucve
CVE-2009-2475
2009-08-10 00:00:00
CVE-2009-2476
2009-08-10 00:00:00
CVE-2009-2674
2009-08-05 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:35:30
Privilege Escalation
2020-04-10 00:35:30
Privilege Escalation
2020-04-10 00:35:29
zdi
zdi
Sun Java Pack200 Decoding Inner Class Count Integer Overflow Vulnerability
2009-08-05 00:00:00
seebug
seebug
Sun Java运行时环境音频系统信息泄露漏洞
2009-08-09 00:00:00
Sun Java运行时环境XML解析拒绝服务漏洞
2009-08-09 00:00:00
osv
osv
Denial of service in Apache Xerces2
2020-06-15 18:51:30
debiancve
debiancve
CVE-2009-2625
2009-08-06 15:30:00
debian
debian
[SECURITY] [DSA 1921-1] New expat packages fix denial of service
2009-10-28 09:39:18
[SECURITY] [DSA 1984-1] New libxerces2-java packages fix denial of service
2010-01-30 17:52:35
github
github
Denial of service in Apache Xerces2
2020-06-15 18:51:30
JSON
Related for SUSE_11_1_JAVA-1_6_0-OPENJDK-090922.NASL
nessus56openvas68centos2oraclelinux3redhat10fedora2securityvulns2ubuntu1suse2cve12prion12ubuntucve10veracode11zdi1seebug2osv1debiancve1debian2github1