Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2019-14059-1.NASLHistoryMay 22, 2019 - 12:00 a.m.
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2019:14059-1)
2019-05-2200:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27
This update for java-1_7_1-ibm fixes the following issues :
Update to Java 7.1 Service Refresh 4 Fix Pack 45.
Security issues fixed :
CVE-2019-10245: Fixed Java bytecode verifier issue causing crashes (bsc#1134718).
CVE-2019-2698: Fixed out of bounds access flaw in the 2D component (bsc#1132729).
CVE-2019-2697: Fixed flaw inside the 2D component (bsc#1132734).
CVE-2019-2602: Fixed flaw inside BigDecimal implementation (Component:
Libraries) (bsc#1132728).
CVE-2019-2684: Fixed flaw was found in the RMI registry implementation (bsc#1132732).
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2019:14059-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(125336);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2019-10245", "CVE-2019-2602", "CVE-2019-2684", "CVE-2019-2697", "CVE-2019-2698");
script_name(english:"SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2019:14059-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for java-1_7_1-ibm fixes the following issues :
Update to Java 7.1 Service Refresh 4 Fix Pack 45.
Security issues fixed :
CVE-2019-10245: Fixed Java bytecode verifier issue causing crashes
(bsc#1134718).
CVE-2019-2698: Fixed out of bounds access flaw in the 2D component
(bsc#1132729).
CVE-2019-2697: Fixed flaw inside the 2D component (bsc#1132734).
CVE-2019-2602: Fixed flaw inside BigDecimal implementation (Component:
Libraries) (bsc#1132728).
CVE-2019-2684: Fixed flaw was found in the RMI registry implementation
(bsc#1132732).
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1132728"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1132729"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1132732"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1132734"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1134718"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-10245/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-2602/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-2684/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-2697/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-2698/"
);
# https://www.suse.com/support/update/announcement/2019/suse-su-201914059-1.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?19c2565f"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Server 11-SP4-LTSS:zypper in -t patch
slessp4-java-1_7_1-ibm-14059=1"
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_1-ibm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-alsa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-jdbc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-plugin");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/04/19");
script_set_attribute(attribute:"patch_publication_date", value:"2019/05/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/05/22");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = eregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! ereg(pattern:"^(SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES11", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES11" && (! ereg(pattern:"^(4)$", string:sp))) audit(AUDIT_OS_NOT, "SLES11 SP4", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES11", sp:"4", cpu:"x86_64", reference:"java-1_7_1-ibm-alsa-1.7.1_sr4.45-26.40.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", cpu:"x86_64", reference:"java-1_7_1-ibm-plugin-1.7.1_sr4.45-26.40.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"java-1_7_1-ibm-1.7.1_sr4.45-26.40.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"java-1_7_1-ibm-jdbc-1.7.1_sr4.45-26.40.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", cpu:"i586", reference:"java-1_7_1-ibm-alsa-1.7.1_sr4.45-26.40.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", cpu:"i586", reference:"java-1_7_1-ibm-plugin-1.7.1_sr4.45-26.40.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "java-1_7_1-ibm");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | java-1_7_1-ibm | p-cpe:/a:novell:suse_linux:java-1_7_1-ibm |
| novell | suse_linux | java-1_7_1-ibm-alsa | p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-alsa |
| novell | suse_linux | java-1_7_1-ibm-jdbc | p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-jdbc |
| novell | suse_linux | java-1_7_1-ibm-plugin | p-cpe:/a:novell:suse_linux:java-1_7_1-ibm-plugin |
| novell | suse_linux | 11 | cpe:/o:novell:suse_linux:11 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10245
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2684
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2697
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2698
www.nessus.org/u?19c2565f
bugzilla.suse.com/show_bug.cgi?id=1132728
bugzilla.suse.com/show_bug.cgi?id=1132729
bugzilla.suse.com/show_bug.cgi?id=1132732
bugzilla.suse.com/show_bug.cgi?id=1132734
bugzilla.suse.com/show_bug.cgi?id=1134718
www.suse.com/security/cve/CVE-2019-10245/
www.suse.com/security/cve/CVE-2019-2602/
www.suse.com/security/cve/CVE-2019-2684/
www.suse.com/security/cve/CVE-2019-2697/
www.suse.com/security/cve/CVE-2019-2698/
Related
ibm
ibm
nessus
nessus
SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2019:1308-1)
2019-05-22 00:00:00
AIX Java Advisory : java_apr2019_advisory.asc (April 2019 CPU)
2019-07-22 00:00:00
SUSE SLED15 / SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2019:1308-2)
2019-06-28 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2019-06-28 13:47:27
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:14059-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1345-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1308-1)
2021-06-09 00:00:00
redhat
redhat
(RHSA-2019:1325) Important: java-1.8.0-ibm security update
2019-06-04 13:15:46
(RHSA-2019:1165) Important: java-1.7.1-ibm security update
2019-05-13 20:58:12
(RHSA-2019:1166) Important: java-1.7.1-ibm security update
2019-05-13 20:58:23
ubuntu
ubuntu
OpenJDK vulnerabilities
2019-05-13 00:00:00
amazon
amazon
Important: java-11-amazon-corretto
2019-06-11 23:21:00
Important: java-1.8.0-openjdk
2019-08-07 23:35:00
Important: java-1.7.0-openjdk
2019-05-16 21:42:00
kaspersky
kaspersky
KLA11470 Multiple vulnerabilities in Oracle Java SE
2019-04-16 00:00:00
oraclelinux
oraclelinux
java-1.8.0-openjdk security update
2019-07-30 00:00:00
java-1.8.0-openjdk security and bug fix update
2019-04-17 00:00:00
java-1.7.0-openjdk security update
2019-04-22 00:00:00
debian
debian
[SECURITY] [DLA 1782-1] openjdk-7 security update
2019-05-10 16:39:02
[SECURITY] [DSA 4453-1] openjdk-8 security update
2019-05-29 21:15:56
centos
centos
java security update
2019-04-22 22:47:39
java security update
2019-04-22 22:45:55
java security update
2019-04-19 18:51:58
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerability
2019-05-08 00:38:09
osv
osv
openjdk-8 - security update
2019-05-29 00:00:00
openjdk-7 - security update
2019-05-10 00:00:00
CVE-2019-10245
2019-04-19 14:29:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0232
2019-05-09 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0159
2019-05-10 00:00:00
Critical Photon OS Security Update - PHSA-2019-0014
2019-05-11 00:00:00
suse
suse
Security update for java-1_8_0-openjdk (important)
2019-05-23 00:00:00
Security update for java-11-openjdk (moderate)
2019-05-04 00:00:00
Security update for java-1_7_0-openjdk (moderate)
2019-06-03 00:00:00
prion
prion
Code injection
2019-04-19 14:29:00
f5
f5
redhatcve
redhatcve
CVE-2019-10245
2019-10-13 19:59:00
veracode
veracode
Denial Of Service
2019-05-16 04:17:27
cve
cve
CVE-2019-10245
2019-04-19 14:29:00
CVE-2019-2697
2019-04-23 19:32:00
Related for SUSE_SU-2019-14059-1.NASL