Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2012-592.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2012:1154-1)

2014-06-1300:00:00
This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
34

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.975

Percentile

100.0%

JSON

Java-1_7_0-openjdk was updated to fix a remote exploit (CVE-2012-4681).

Also bugfixes were done :

  • fix build on ARM and i586

  • remove files that are no longer used

  • zero build can be enabled using rpmbuild (osc build)
    –with zero

  • add hotspot 2.1 needed for zero

  • fix filelist on %(ix86)

  • Security fixes

  • S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder

  • S7194567, CVE-2012-3136: Improve long term persistence of java.beans objects

  • S7163201, CVE-2012-0547: Simplify toolkit internals references

  • RH852051, CVE-2012-4681, S7162473: Reintroduce PackageAccessible checks removed in 6788531.

  • OpenJDK

  • Fix Zero FTBFS issues with 2.3

  • S7180036: Build failure in Mac platform caused by fix # 7163201

  • S7182135: Impossible to use some editors directly

  • S7183701: [TEST] closed/java/beans/security/TestClassFinder.java –
    compilation failed

  • S7185678:
    java/awt/Menu/NullMenuLabelTest/NullMenuLabelTest.java failed with NPE

  • Bug fixes

  • PR1149: Zero-specific patch files not being packaged

  • use icedtea tarball for build again, this led into following dropped files because the are already in the tarball and simplified %prep and %build

  • drop class-rewriter.tar.gz

  • drop systemtap-tapset.tar.gz

  • drop desktop-files.tar.gz

  • drop nss.cfg

  • drop pulseaudio.tar.gz

  • drop remove-intree-libraries.sh

  • add archives from icedtea7-forest-2.3 for openjdk, corba, jaxp, jaxws, jdk, langtools and hotspot

  • drop rhino.patch, pulse-soundproperties and systemtap patch

  • move gnome bridge patches before make as it’s irritating to have the patch fail after openjdk is built

  • use explicit file attributes in %files sections to prevent the file permissions problems in a future (like bnc#770040)

  • changed version scheme, so it now matches Oracle Java 1.7.0.6 == Java7 u 6

  • update to icedtea-2.3.1 / OpenJDK7 u6 (bnc#777499)

  • Security fixes

  • RH852051, CVE-2012-4681: Reintroduce PackageAccessible checks removed in 6788531.

  • Bug fixes

  • PR902: PulseAudioClip getMicrosecondsLength() returns length in milliseconds, not microseconds

  • PR986: IcedTea7 fails to build with IcedTea6 CACAO due to low max heapsize

  • PR1050: Stream objects not garbage collected

  • PR1119: Only add classes to rt-source-files.txt if the class (or one or more of its methods/fields) are actually missing from the boot JDK

  • PR1137: Allow JARs to be optionally compressed by setting COMPRESS_JARS

  • OpenJDK

  • Make dynamic support for GConf work again.

  • PR1095: Add configure option for -Werror

  • PR1101: Undefined symbols on GNU/Linux SPARC

  • PR1140: Unnecessary diz files should not be installed

  • S7192804, PR1138: Build should not install jvisualvm man page for OpenJDK

  • JamVM

  • ARMv6 armhf: Changes for Raspbian (Raspberry Pi)

  • PPC: Don’t use lwsync if it isn’t supported

  • X86: Generate machine-dependent stubs for i386

  • When suspending, ignore detached threads that have died, this prevents a user caused deadlock when an external thread has been attached to the VM via JNI and it has exited without detaching

  • Add missing REF_TO_OBJs for references passed from JNI, this enable JamVM to run Qt-Jambi

  • there are number of fixes in 2.3, see NEWS

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2012-592.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74748);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/03/08");

  script_cve_id(
    "CVE-2012-0547",
    "CVE-2012-1682",
    "CVE-2012-3136",
    "CVE-2012-4681"
  );
  script_bugtraq_id(
    55213,
    55336,
    55337,
    55339
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/03/24");

  script_name(english:"openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2012:1154-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"Java-1_7_0-openjdk was updated to fix a remote exploit
(CVE-2012-4681).

Also bugfixes were done :

  - fix build on ARM and i586

  - remove files that are no longer used

  - zero build can be enabled using rpmbuild (osc build)
    --with zero

  - add hotspot 2.1 needed for zero

  - fix filelist on %(ix86)

  - Security fixes

  - S7162476, CVE-2012-1682: XMLDecoder security issue via
    ClassFinder

  - S7194567, CVE-2012-3136: Improve long term persistence
    of java.beans objects

  - S7163201, CVE-2012-0547: Simplify toolkit internals
    references

  - RH852051, CVE-2012-4681, S7162473: Reintroduce
    PackageAccessible checks removed in 6788531.

  - OpenJDK

  - Fix Zero FTBFS issues with 2.3

  - S7180036: Build failure in Mac platform caused by fix #
    7163201

  - S7182135: Impossible to use some editors directly

  - S7183701: [TEST]
    closed/java/beans/security/TestClassFinder.java –
    compilation failed

  - S7185678:
    java/awt/Menu/NullMenuLabelTest/NullMenuLabelTest.java
    failed with NPE

  - Bug fixes

  - PR1149: Zero-specific patch files not being packaged

  - use icedtea tarball for build again, this led into
    following dropped files because the are already in the
    tarball and simplified %prep and %build

  - drop class-rewriter.tar.gz

  - drop systemtap-tapset.tar.gz

  - drop desktop-files.tar.gz

  - drop nss.cfg

  - drop pulseaudio.tar.gz

  - drop remove-intree-libraries.sh

  - add archives from icedtea7-forest-2.3 for openjdk,
    corba, jaxp, jaxws, jdk, langtools and hotspot

  - drop rhino.patch, pulse-soundproperties and systemtap
    patch

  - move gnome bridge patches before make as it's irritating
    to have the patch fail after openjdk is built

  - use explicit file attributes in %files sections to
    prevent the file permissions problems in a future (like
    bnc#770040)

  - changed version scheme, so it now matches Oracle Java
    1.7.0.6 == Java7 u 6

  - update to icedtea-2.3.1 / OpenJDK7 u6 (bnc#777499)

  - Security fixes

  - RH852051, CVE-2012-4681: Reintroduce PackageAccessible
    checks removed in 6788531.

  - Bug fixes

  - PR902: PulseAudioClip getMicrosecondsLength() returns
    length in milliseconds, not microseconds

  - PR986: IcedTea7 fails to build with IcedTea6 CACAO due
    to low max heapsize

  - PR1050: Stream objects not garbage collected

  - PR1119: Only add classes to rt-source-files.txt if the
    class (or one or more of its methods/fields) are
    actually missing from the boot JDK

  - PR1137: Allow JARs to be optionally compressed by
    setting COMPRESS_JARS

  - OpenJDK

  - Make dynamic support for GConf work again.

  - PR1095: Add configure option for -Werror

  - PR1101: Undefined symbols on GNU/Linux SPARC

  - PR1140: Unnecessary diz files should not be installed

  - S7192804, PR1138: Build should not install jvisualvm man
    page for OpenJDK

  - JamVM

  - ARMv6 armhf: Changes for Raspbian (Raspberry Pi)

  - PPC: Don't use lwsync if it isn't supported

  - X86: Generate machine-dependent stubs for i386

  - When suspending, ignore detached threads that have died,
    this prevents a user caused deadlock when an external
    thread has been attached to the VM via JNI and it has
    exited without detaching

  - Add missing REF_TO_OBJs for references passed from JNI,
    this enable JamVM to run Qt-Jambi

  - there are number of fixes in 2.3, see NEWS");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.novell.com/show_bug.cgi?id=770040");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.novell.com/show_bug.cgi?id=777499");
  script_set_attribute(attribute:"see_also", value:"https://lists.opensuse.org/opensuse-updates/2012-09/msg00052.html");
  script_set_attribute(attribute:"solution", value:
"Update the affected java-1_7_0-openjdk packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Java 7 Applet Remote Code Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/08/28");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/09/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-demo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-demo-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-devel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-javadoc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:java-1_7_0-openjdk-src");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.2");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-debuginfo-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-debugsource-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-demo-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-demo-debuginfo-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-devel-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-devel-debuginfo-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-javadoc-1.7.0.6-3.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"java-1_7_0-openjdk-src-1.7.0.6-3.12.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "java-1_7_0-openjdk");
}

Related

openvas 50
oraclelinux 3
nessus 32
redhat 6
suse 4
centos 3
zdi 1
amazon 1
ubuntucve 5
prion 5
nvd 6
seebug 1
cve 6
cvelist 5
ubuntu 1
exploitdb 1
saint 4
threatpost 13
thn 4
fedora 10
metasploit 1
cisa 1
checkpoint_advisories 2
attackerkb 3
freebsd 1
securityvulns 3
myhack58 1
cert 1
canvas 1
cisa_kev 1
veracode 22
securelist 1
openvas
openvas
CentOS Update for java CESA-2012:1223 centos6
2012-09-04 00:00:00
SuSE Update for java-1_7_0-openjdk openSUSE-SU-2012:1154-1 (java-1_7_0-openjdk)
2013-03-11 00:00:00
RedHat Update for java-1.7.0-openjdk RHSA-2012:1223-01
2012-09-04 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2012-09-03 00:00:00
java-1.6.0-openjdk security update
2012-09-03 00:00:00
java-1.6.0-openjdk security update
2012-09-03 00:00:00
nessus
nessus
RHEL 6 : java-1.7.0-openjdk (RHSA-2012:1223)
2012-09-04 00:00:00
Scientific Linux Security Update : java-1.7.0-openjdk on SL6.x i386/x86_64 (20120903)
2012-09-05 00:00:00
CentOS 6 : java-1.7.0-openjdk (CESA-2012:1223)
2012-09-06 00:00:00
redhat
redhat
(RHSA-2012:1225) Critical: java-1.7.0-oracle security update
2012-09-04 00:00:00
(RHSA-2012:1223) Important: java-1.7.0-openjdk security update
2012-09-03 00:00:00
(RHSA-2012:1222) Important: java-1.6.0-openjdk security update
2012-09-03 00:00:00
suse
suse
java-1_7_0-openjdk: security fix for remote exploit (critical)
2012-09-12 19:08:39
Security update for OpenJDK (critical)
2012-09-12 06:08:36
java-1_6_0-openjdk: icedtea-web update to 1.11.4 (bnc#) (critical)
2012-09-14 14:13:53
centos
centos
java security update
2012-09-03 14:37:23
java security update
2012-09-03 14:36:46
java security update
2012-09-03 14:26:49
zdi
zdi
Oracle Java java.beans.Statement Remote Code Execution Vulnerability
2012-12-21 00:00:00
amazon
amazon
Important: java-1.6.0-openjdk
2012-09-04 10:22:00
ubuntucve
ubuntucve
CVE-2012-3136
2012-08-30 00:00:00
CVE-2012-1682
2012-09-03 00:00:00
CVE-2012-4681
2012-08-28 00:00:00
prion
prion
Design/Logic Flaw
2012-08-30 23:55:00
Design/Logic Flaw
2012-08-30 23:55:00
Design/Logic Flaw
2012-08-28 00:55:00
nvd
nvd
CVE-2012-3136
2012-08-30 23:55:01
CVE-2012-1682
2012-08-30 23:55:01
CVE-2012-4681
2012-08-28 00:55:01
seebug
seebug
Oracle Sun JRE 1.x 远程JRE漏洞
2012-09-04 00:00:00
cve
cve
CVE-2012-1682
2012-08-30 23:55:01
CVE-2012-3136
2012-08-30 23:55:01
CVE-2012-4681
2012-08-28 00:55:01
cvelist
cvelist
CVE-2012-3136
2012-08-30 23:00:00
CVE-2012-1682
2012-08-30 23:00:00
CVE-2012-4681
2012-08-28 00:00:00
ubuntu
ubuntu
OpenJDK 6 vulnerabilities
2012-09-03 00:00:00
exploitdb
exploitdb
Java 7 Applet - Remote Code Execution (Metasploit)
2012-08-27 00:00:00
saint
saint
Oracle Java findMethod findClass Security Bypass
2012-08-30 00:00:00
Oracle Java findMethod findClass Security Bypass
2012-08-30 00:00:00
Oracle Java findMethod findClass Security Bypass
2012-08-30 00:00:00
threatpost
threatpost
Computer Virus Blacks Out Qatari Gas Producer
2012-08-30 16:48:35
Newest Java 7 Update Still Exploitable, Researcher Says
2012-09-04 15:08:53
Oracle Releases Fix For Java CVE-2012-4681 Flaw
2012-08-30 18:12:34
thn
thn
Exploit Packs updated with New Java Zero-Day vulnerability
2013-01-10 18:09:00
Oracle releases patches for Java vulnerability CVE-2012-4681
2012-08-31 22:39:00
Exploit Packs updated with New Java Zero-Day vulnerability
2013-01-10 07:09:00
fedora
fedora
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.25-2.3.10.3.fc17
2013-06-20 02:29:10
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.6-2.3.1.fc18.2
2012-09-17 22:40:47
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.7.0.fc17
2013-02-21 05:47:45
metasploit
metasploit
Java 7 Applet Remote Code Execution
2012-08-27 09:25:04
cisa
cisa
US-CERT Releases Oracle Java JRE 1.7 Security Advisory
2012-08-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Java 7 Applet RCE Gondvv (CVE-2012-4681)
2012-08-28 00:00:00
Preemptive Protection against Oracle JRE Restrictions Bypass Remote Code Execution (CVE-2012-4681)
2012-10-01 00:00:00
attackerkb
attackerkb
CVE-2012-4681
2012-08-28 00:00:00
Java 7 Applet Remote Code Execution
2012-08-28 00:00:00
CVE-2013-0422
2013-01-10 00:00:00
freebsd
freebsd
Java 1.7 -- security manager bypass
2012-08-27 00:00:00
securityvulns
securityvulns
Java environment limitations bypass
2012-09-02 00:00:00
[SE-2012-01] New security issue affecting Java SE 7 Update 7
2012-09-02 00:00:00
[security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities
2012-10-30 00:00:00
myhack58
myhack58
The New Year initial, Java break first 0day-vulnerability warning-the black bar safety net
2013-01-11 00:00:00
cert
cert
Oracle Java JRE 1.7 Expression.execute() and SunToolkit.getField() fail to restrict access to privileged code
2012-08-27 00:00:00
canvas
canvas
Immunity Canvas: JAVA_FORNAME_GETFIELD
2012-08-28 00:55:00
cisa_kev
cisa_kev
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
2022-03-03 00:00:00
veracode
veracode
Sandbox Protection Bypass
2019-05-02 04:41:04
Arbitrary Code Execution
2019-05-02 04:41:05
Arbitrary Code Execution
2019-05-02 04:41:05
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.975

Percentile

100.0%

JSON
Related for OPENSUSE-2012-592.NASL
openvas50oraclelinux3nessus32redhat6suse4centos3zdi1amazon1ubuntucve5prion5nvd6seebug1cve6cvelist5ubuntu1exploitdb1saint4threatpost13thn4fedora10metasploit1cisa1checkpoint_advisories2attackerkb3freebsd1securityvulns3myhack581cert1canvas1cisa_kev1veracode22securelist1