Ubuntu 8.10 : OpenJDK vulnerabilities (USN-713-1)

Ubuntu Security Notice (C) 2009-2013 Canonical, Inc. / NASL script (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote Ubuntu host is missing one or more security-related patches.

Description :

It was discovered that Java did not correctly handle untrusted
applets. If a user were tricked into running a malicious applet, a
remote attacker could gain user privileges, or list directory
contents. (CVE-2008-5347, CVE-2008-5350)

It was discovered that Kerberos authentication and RSA public key
processing were not correctly handled in Java. A remote attacker could
exploit these flaws to cause a denial of service. (CVE-2008-5348,
CVE-2008-5349)

It was discovered that Java accepted UTF-8 encodings that might be
handled incorrectly by certain applications. A remote attacker could
bypass string filters, possible leading to other exploits.
(CVE-2008-5351)

Overflows were discovered in Java JAR processing. If a user or
automated system were tricked into processing a malicious JAR file, a
remote attacker could crash the application, leading to a denial of
service. (CVE-2008-5352, CVE-2008-5354)

It was discovered that Java calendar objects were not unserialized
safely. If a user or automated system were tricked into processing a
specially crafted calendar object, a remote attacker could execute
arbitrary code with user privileges. (CVE-2008-5353)

It was discovered that the Java image handling code could lead to
memory corruption. If a user or automated system were tricked into
processing a specially crafted image, a remote attacker could crash
the application, leading to a denial of service. (CVE-2008-5358,
CVE-2008-5359)

It was discovered that temporary files created by Java had predictable
names. If a user or automated system were tricked into processing a
specially crafted JAR file, a remote attacker could overwrite
sensitive information. (CVE-2008-5360).

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true