Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:13614125623114202136711HistoryNov 17, 2021 - 12:00 a.m.
SUSE: Security Advisory (SUSE-SU-2021:3671-1)
2021-11-1700:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
6.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
6.3 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.002 Low
EPSS
Percentile
60.2%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.4.2021.3671.1");
script_cve_id("CVE-2021-35550", "CVE-2021-35556", "CVE-2021-35559", "CVE-2021-35561", "CVE-2021-35564", "CVE-2021-35565", "CVE-2021-35567", "CVE-2021-35578", "CVE-2021-35586", "CVE-2021-35603");
script_tag(name:"creation_date", value:"2021-11-17 03:22:28 +0000 (Wed, 17 Nov 2021)");
script_version("2024-02-02T14:37:50+0000");
script_tag(name:"last_modification", value:"2024-02-02 14:37:50 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"7.1");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:N/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2021-10-26 13:19:43 +0000 (Tue, 26 Oct 2021)");
script_name("SUSE: Security Advisory (SUSE-SU-2021:3671-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse_sles", "ssh/login/rpms", re:"ssh/login/release=(SLES15\.0SP2|SLES15\.0SP3|SLES15\.0|SLES15\.0SP1)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2021:3671-1");
script_xref(name:"URL", value:"https://www.suse.com/support/update/announcement/2021/suse-su-20213671-1/");
script_tag(name:"summary", value:"The remote host is missing an update for the 'java-11-openjdk' package(s) announced via the SUSE-SU-2021:3671-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for java-11-openjdk fixes the following issues:
Update to 11.0.13+8 (October 2021 CPU)
CVE-2021-35550, bsc#1191901: Update the default enabled cipher suites
preference
CVE-2021-35565, bsc#1191909: com.sun.net.HttpsServer spins on TLS
session close
CVE-2021-35556, bsc#1191910: Richer Text Editors
CVE-2021-35559, bsc#1191911: Enhanced style for RTF kit
CVE-2021-35561, bsc#1191912: Better hashing support
CVE-2021-35564, bsc#1191913: Improve Keystore integrity
CVE-2021-35567, bsc#1191903: More Constrained Delegation
CVE-2021-35578, bsc#1191904: Improve TLS client handshaking
CVE-2021-35586, bsc#1191914: Better BMP support
CVE-2021-35603, bsc#1191906: Better session identification
Improve Stream handling for SSL
Improve requests of certificates
Correct certificate requests
Enhance DTLS client handshake");
script_tag(name:"affected", value:"'java-11-openjdk' package(s) on SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, SUSE Linux Enterprise High Performance Computing 15, SUSE Linux Enterprise High Performance Computing 15-SP1, SUSE Linux Enterprise Module for Basesystem 15-SP2, SUSE Linux Enterprise Module for Basesystem 15-SP3, SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2, SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 15-SP1, SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Server for SAP 15-SP1.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLES15.0SP2") {
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk", rpm:"java-11-openjdk~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-debugsource", rpm:"java-11-openjdk-debugsource~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-demo", rpm:"java-11-openjdk-demo~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-devel", rpm:"java-11-openjdk-devel~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-headless", rpm:"java-11-openjdk-headless~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-javadoc", rpm:"java-11-openjdk-javadoc~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-jmods", rpm:"java-11-openjdk-jmods~11.0.13.0~3.65.1", rls:"SLES15.0SP2"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLES15.0SP3") {
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk", rpm:"java-11-openjdk~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-debugsource", rpm:"java-11-openjdk-debugsource~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-demo", rpm:"java-11-openjdk-demo~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-devel", rpm:"java-11-openjdk-devel~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-headless", rpm:"java-11-openjdk-headless~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-javadoc", rpm:"java-11-openjdk-javadoc~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-jmods", rpm:"java-11-openjdk-jmods~11.0.13.0~3.65.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLES15.0") {
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk", rpm:"java-11-openjdk~11.0.13.0~3.65.1", rls:"SLES15.0"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-debugsource", rpm:"java-11-openjdk-debugsource~11.0.13.0~3.65.1", rls:"SLES15.0"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-demo", rpm:"java-11-openjdk-demo~11.0.13.0~3.65.1", rls:"SLES15.0"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-devel", rpm:"java-11-openjdk-devel~11.0.13.0~3.65.1", rls:"SLES15.0"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-headless", rpm:"java-11-openjdk-headless~11.0.13.0~3.65.1", rls:"SLES15.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLES15.0SP1") {
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk", rpm:"java-11-openjdk~11.0.13.0~3.65.1", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-debugsource", rpm:"java-11-openjdk-debugsource~11.0.13.0~3.65.1", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-demo", rpm:"java-11-openjdk-demo~11.0.13.0~3.65.1", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-devel", rpm:"java-11-openjdk-devel~11.0.13.0~3.65.1", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-11-openjdk-headless", rpm:"java-11-openjdk-headless~11.0.13.0~3.65.1", rls:"SLES15.0SP1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
oraclelinux
oraclelinux
java-11-openjdk security update
2021-10-20 00:00:00
java-11-openjdk security and bug fix update
2021-10-21 00:00:00
java-1.8.0-openjdk security and bug fix update
2021-10-20 00:00:00
suse
suse
Security update for java-11-openjdk (important)
2021-11-16 00:00:00
Security update for java-11-openjdk (important)
2021-11-17 00:00:00
Security update for java-1_8_0-openjdk (important)
2021-11-24 00:00:00
nessus
nessus
Debian DSA-5000-1 : openjdk-11 - security update
2021-11-02 00:00:00
RHEL 8 : java-11-openjdk (RHSA-2021:3887)
2021-10-21 00:00:00
Oracle Linux 7 : java-11-openjdk (ELSA-2021-3892)
2021-10-20 00:00:00
centos
centos
java security update
2021-11-17 15:04:57
java security update
2021-11-17 15:06:26
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:3528-1)
2021-10-28 00:00:00
Debian: Security Advisory (DSA-5000-2)
2021-11-03 00:00:00
CentOS: Security Advisory for java-11-openjdk (CESA-2021:3892)
2021-11-18 00:00:00
debian
debian
[SECURITY] [DSA 5000-2] openjdk-11 security update
2021-12-22 19:03:51
[SECURITY] [DSA 5000-1] openjdk-11 security update
2021-11-01 19:44:34
[SECURITY] [DSA 5012-1] openjdk-17 security update
2021-11-23 21:30:57
osv
osv
openjdk-11 - security update
2021-12-22 00:00:00
openjdk-11 - security update
2021-11-01 00:00:00
Important: java-11-openjdk security update
2021-10-20 12:41:00
redhat
redhat
(RHSA-2021:3891) Important: java-11-openjdk security update
2021-10-20 12:41:00
(RHSA-2021:3887) Important: java-11-openjdk security update
2021-10-20 12:39:20
rocky
rocky
java-11-openjdk security update
2021-10-20 12:41:00
java-17-openjdk security update
2021-11-09 19:26:37
java-1.8.0-openjdk security and bug fix update
2021-10-20 12:38:15
altlinux
altlinux
almalinux
almalinux
Important: java-11-openjdk security update
2021-10-20 12:41:00
Important: java-17-openjdk security update
2021-11-09 19:26:37
Important: java-1.8.0-openjdk security and bug fix update
2021-10-20 12:38:15
fedora
fedora
[SECURITY] Fedora 34 Update: java-11-openjdk-11.0.13.0.8-1.fc34
2021-10-25 15:14:27
[SECURITY] Fedora 35 Update: java-11-openjdk-11.0.13.0.8-1.fc35
2021-10-29 23:29:26
[SECURITY] Fedora 33 Update: java-11-openjdk-11.0.13.0.8-1.fc33
2021-10-28 19:31:37
rosalinux
rosalinux
Advisory ROSA-SA-2023-2134
2023-03-21 12:45:26
amazon
amazon
Important: java-1.8.0-openjdk
2022-01-18 20:14:00
Important: java-1.8.0-openjdk
2021-12-08 02:23:00
Important: java-11-amazon-corretto
2021-10-28 23:20:00
mageia
mageia
Updated java openjdk packages fix security vulnerability
2021-12-08 23:04:18
ibm
ibm
ubuntu
ubuntu
OpenJDK vulnerabilities
2021-12-17 00:00:00
kaspersky
kaspersky
KLA12331 Multiple vulnerabilities in Oracle Java SE
2021-09-28 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2022-02-23 08:12:23
6.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
6.3 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.002 Low
EPSS
Percentile
60.2%
Related for OPENVAS:13614125623114202136711