Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : OpenJDK 11 vulnerabilities (USN-7097-1)

🗓️ 11 Nov 2024 00:00:00Reported by TenableType

Ubuntu hosts have OpenJDK 11 vulnerabilities allowing denial of service and unauthorized access risks.

Reporter	Title	Published	Views	Family All 1349
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM Application Performance Management	9 Jan 202510:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities of IBM Java SDK affect Linux KVM Agent from IBM Tivoli Monitoring for Virtual Environments	13 Feb 202510:18	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Storage Protect Server	25 Jun 202516:31	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM SDK, Java Technology Edition affect IBM Tivoli Netcool Impact	27 Jan 202518:19	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Business Service Manager	17 Sep 202420:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Common Licensing using IBM® SDK, Java™ Technology Edition vulnerable to CVEs	18 Nov 202410:34	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities in Java SE shipped with IBM CICS TX Standard.	4 Mar 202509:52	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Java SE affects IBM Netezza Appliance	16 Dec 202510:28	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Java SE (component: Hotspot: CVE-2024-10917, CVE-2024-21235, CVE-2024-21217, CVE-2024-21210, CVE-2024-21208) affect IBM PowerVM Novalink.	1 Apr 202507:50	–	ibm

Source	Link
ubuntu	www.ubuntu.com/security/notices/USN-7097-1
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-7097-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(210737);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/11/04");

  script_cve_id(
    "CVE-2024-21131",
    "CVE-2024-21138",
    "CVE-2024-21140",
    "CVE-2024-21144",
    "CVE-2024-21145",
    "CVE-2024-21147",
    "CVE-2024-21208",
    "CVE-2024-21210",
    "CVE-2024-21217",
    "CVE-2024-21235"
  );
  script_xref(name:"USN", value:"7097-1");

  script_name(english:"Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : OpenJDK 11 vulnerabilities (USN-7097-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by
multiple vulnerabilities as referenced in the USN-7097-1 advisory.

    Andy Boothe discovered that the Networking component of OpenJDK 11 did not properly handle access under
    certain circumstances. An unauthenticated

    attacker could possibly use this issue to cause a denial of service. (CVE-2024-21208)

    It was discovered that the Hotspot component of OpenJDK 11 did not properly handle vectorization under
    certain circumstances. An unauthenticated attacker could possibly use this issue to access unauthorized
    resources and expose sensitive information. (CVE-2024-21210, CVE-2024-21235)

    It was discovered that the Serialization component of OpenJDK 11 did not properly handle deserialization
    under certain circumstances. An unauthenticated attacker could possibly use this issue to cause a denial
    of service. (CVE-2024-21217)

    It was discovered that the Hotspot component of OpenJDK 11 was not properly bounding certain UTF-8
    strings, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a
    denial of service or execute arbitrary code. This issue was only addressed in Ubuntu 18.04 LTS.
    (CVE-2024-21131)

    It was discovered that the Hotspot component of OpenJDK 11 could be made to run into an infinite loop. If
    an automated system were tricked into processing excessively large symbols, an attacker could possibly use
    this issue to cause a denial of service. This issue was only addressed in Ubuntu 18.04 LTS.
    (CVE-2024-21138)

    It was discovered that the Hotspot component of OpenJDK 11 did not properly perform range check
    elimination. An attacker could possibly use this issue to cause a denial of service, execute arbitrary
    code or bypass Java sandbox restrictions. This issue was only addressed in Ubuntu 18.04 LTS.
    (CVE-2024-21140)

    Yakov Shafranovich discovered that the Concurrency component of OpenJDK 11 incorrectly performed header
    validation in the Pack200 archive format. An attacker could possibly use this issue to cause a denial of
    service. This issue was only addressed in Ubuntu 18.04 LTS. (CVE-2024-21144)

    Sergey Bylokhov discovered that OpenJDK 11 did not properly manage memory when handling 2D images. An
    attacker could possibly use this issue to obtain sensitive information. This issue was only addressed in
    Ubuntu 18.04 LTS. (CVE-2024-21145)

    It was discovered that the Hotspot component of OpenJDK 11 incorrectly handled memory when performing
    range check elimination under certain circumstances. An attacker could possibly use this issue to cause a
    denial of service, execute arbitrary code or bypass Java sandbox restrictions. This issue was only
    addressed in Ubuntu 18.04 LTS. (CVE-2024-21147)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-7097-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-21147");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2024-21145");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/11/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/11/11");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.10");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-demo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-jdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-jdk-headless");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-jre");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-jre-headless");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-jre-zero");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-11-source");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2024-2025 Canonical, Inc. / NASL script (C) 2024-2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl", "ubuntu_pro_sub_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('18.04' >< os_release || '20.04' >< os_release || '22.04' >< os_release || '24.04' >< os_release || '24.10' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04 / 22.04 / 24.04 / 24.10', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var ubuntu_pro_detected = get_kb_item('Host/Ubuntu/Pro/Services/esm-apps');
ubuntu_pro_detected = !empty_or_null(ubuntu_pro_detected);

var pro_caveat_needed = FALSE;

var pkgs = [
    {'osver': '18.04', 'pkgname': 'openjdk-11-demo', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-jdk', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-jdk-headless', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-jre', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-jre-headless', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-jre-zero', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'openjdk-11-source', 'pkgver': '11.0.25+9-1ubuntu1~18.04', 'ubuntu_pro': TRUE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-demo', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-jdk', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-jdk-headless', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-jre', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-jre-headless', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-jre-zero', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '20.04', 'pkgname': 'openjdk-11-source', 'pkgver': '11.0.25+9-1ubuntu1~20.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-demo', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-jdk', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-jdk-headless', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-jre', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-jre-headless', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-jre-zero', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '22.04', 'pkgname': 'openjdk-11-source', 'pkgver': '11.0.25+9-1ubuntu1~22.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-demo', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-jdk', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-jdk-headless', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-jre', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-jre-headless', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-jre-zero', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.04', 'pkgname': 'openjdk-11-source', 'pkgver': '11.0.25+9-1ubuntu1~24.04', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-demo', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-jdk', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-jdk-headless', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-jre', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-jre-headless', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-jre-zero', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE},
    {'osver': '24.10', 'pkgname': 'openjdk-11-source', 'pkgver': '11.0.25+9-1ubuntu1~24.10', 'ubuntu_pro': FALSE}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  var pro_required = NULL;
  if (!empty_or_null(package_array['ubuntu_pro'])) pro_required = package_array['ubuntu_pro'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) {
        flag++;
        if (!ubuntu_pro_detected && !pro_caveat_needed) pro_caveat_needed = pro_required;
    }
  }
}

if (flag)
{
  var extra = '';
  if (pro_caveat_needed) {
    extra += 'NOTE: This vulnerability check contains fixes that apply to packages only \n';
    extra += 'available in Ubuntu ESM repositories. Access to these package security updates \n';
    extra += 'require an Ubuntu Pro subscription.\n\n';
  }
  extra += ubuntu_report_get();
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : extra
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'openjdk-11-demo / openjdk-11-jdk / openjdk-11-jdk-headless / etc');
}

04 Nov 2025 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 3.14.8 - 7.4

EPSS0.01257

SSVC