Lucene search
K

Ubuntu 24.10 : CRaC JDK 21 vulnerabilities (USN-7339-1)

🗓️ 11 Mar 2025 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 3 Views

Ubuntu 24.10 has multiple CRaC JDK 21 vulnerabilities impacting network and serialization access.

Related
Refs
Code
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: Multiple Vulnerabilities in IBM Application Performance Management
9 Jan 202510:41
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Storage Protect Server
25 Jun 202516:31
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in IBM SDK, Java Technology Edition affect IBM Tivoli Netcool Impact
27 Jan 202518:19
ibm
IBM Security Bulletins
Security Bulletin: Security vulnerabilities in Java SE shipped with IBM CICS TX Standard.
4 Mar 202509:52
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Java SE affects IBM Netezza Appliance
16 Dec 202510:28
ibm
IBM Security Bulletins
Security Bulletin: Multiple Vulnerabilities in IBM API Connect
15 Mar 202500:18
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in Java SE (component: Hotspot: CVE-2024-10917, CVE-2024-21235, CVE-2024-21217, CVE-2024-21210, CVE-2024-21208) affect IBM PowerVM Novalink.
1 Apr 202507:50
ibm
IBM Security Bulletins
Security Bulletin: IBM MQ is affected by multiple vulnerabilities in the IBM Semeru Runtime
27 Feb 202515:56
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Java affects IBM Netezza Appliance
16 Jan 202609:15
ibm
IBM Security Bulletins
Security Bulletin: Deserialization of untrusted data, path traversal, and other vulnerabilities might affect IBM Storage Defender - Resiliency Service
21 Jul 202516:17
ibm
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-7339-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(232564);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/03/11");

  script_cve_id(
    "CVE-2024-21208",
    "CVE-2024-21210",
    "CVE-2024-21217",
    "CVE-2024-21235",
    "CVE-2025-21502"
  );
  script_xref(name:"USN", value:"7339-1");

  script_name(english:"Ubuntu 24.10 : CRaC JDK 21 vulnerabilities (USN-7339-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the
USN-7339-1 advisory.

    Andy Boothe discovered that the Networking component of CRaC JDK 21 did not properly handle access under
    certain circumstances. An unauthenticated attacker could possibly use this issue to cause a denial of
    service. (CVE-2024-21208)

    It was discovered that the Hotspot component of CRaC JDK 21 did not properly handle vectorization under
    certain circumstances. An unauthenticated attacker could possibly use this issue to access unauthorized
    resources and expose sensitive information. (CVE-2024-21210, CVE-2024-21235)

    It was discovered that the Serialization component of CRaC JDK 21 did not properly handle deserialization
    under certain circumstances. An unauthenticated attacker could possibly use this issue to cause a denial
    of service. (CVE-2024-21217)

    It was discovered that the Hotspot component of CRaC JDK 21 did not properly handle API access under
    certain circumstances. An unauthenticated attacker could possibly use this issue to access unauthorized
    resources and expose sensitive information. (CVE-2025-21502)

    In addition to security fixes, the updated packages contain bug fixes, new features, and possibly
    incompatible changes.

    Please see the following for more information:
    https://openjdk.org/groups/vulnerability/advisories/2024-10-15
    https://openjdk.org/groups/vulnerability/advisories/2025-01-21

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-7339-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-21235");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/10/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/03/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/03/11");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.10");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-demo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-jdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-jdk-headless");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-jre");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-jre-headless");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-jre-zero");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-source");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openjdk-21-crac-testsupport");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2025 Canonical, Inc. / NASL script (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('24.10' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 24.10', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-demo', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-jdk', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-jdk-headless', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-jre', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-jre-headless', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-jre-zero', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-source', 'pkgver': '21.0.6+7-0ubuntu1~24.10'},
    {'osver': '24.10', 'pkgname': 'openjdk-21-crac-testsupport', 'pkgver': '21.0.6+7-0ubuntu1~24.10'}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  var extra = '';
  extra += ubuntu_report_get();
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : extra
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'openjdk-21-crac-demo / openjdk-21-crac-jdk / etc');
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

11 Mar 2025 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 3.14.8
EPSS0.01157
SSVC
3