Security Advisory Critical: java-1.5.0-sun security update

Advisory: RHSA-2008:0595-3
Type: Security Advisory
Severity: Critical
Issued on: 2008-07-14
Last updated on: 2008-07-14
Affected Products: RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)
RHEL Supplementary EUS (v. 5.2.z server)
Red Hat Enterprise Linux Extras (v. 4)
Red Hat Enterprise Linux Extras (v. 4.6.z)
OVAL: com.redhat.rhsa-20080595.xml
CVEs (cve.mitre.org): CVE-2008-3103
CVE-2008-3104
CVE-2008-3107
CVE-2008-3111
CVE-2008-3112
CVE-2008-3113
CVE-2008-3114

Details

Updated java-1.5.0-sun packages that correct several security issues are
now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

The Java Runtime Environment (JRE) contains the software and tools that
users need to run applets and applications written using the Java
programming language.

A vulnerability was found in the Java Management Extensions (JMX)
management agent, when local monitoring is enabled. This allowed remote
attackers to perform illegal operations. (CVE-2008-3103)

Multiple vulnerabilities with unsigned applets were reported. A remote
attacker could misuse an unsigned applet to connect to localhost services
running on the host running the applet. (CVE-2008-3104)

A Java Runtime Environment (JRE) vulnerability could be triggered by an
untrusted application or applet. A remote attacker could grant an untrusted
applet extended privileges such as reading and writing local files, or
executing local programs. (CVE-2008-3107)

Several buffer overflow vulnerabilities in Java Web Start were reported.
These vulnerabilities may allow an untrusted Java Web Start application to
elevate its privileges and thereby grant itself permission to read and/or
write local files, as well as to execute local applications accessible to
the user running the untrusted application. (CVE-2008-3111)

Two file processing vulnerabilities in Java Web Start were found. A remote
attacker, by means of an untrusted Java Web Start application, was able to
create or delete arbitrary files with the permissions of the user running
the untrusted application. (CVE-2008-3112, CVE-2008-3113)

A vulnerability in Java Web Start when processing untrusted applications
was reported. An attacker was able to acquire sensitive information, such
as the cache location. (CVE-2008-3114)

Users of java-1.5.0-sun should upgrade to these updated packages, which
correct these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

RHEL Desktop Supplementary (v. 5 client)
IA-32:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     9519e9d4f84829d37e989b486353c166
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     f6ad374c0f8e842541f809b3b49b99b9
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     b2c540ecaa7e085e2f403f9b780648c6
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     63e928be3bd988759554b0f679ca7b86
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ba0cd9d867f1c745c8a15acaffdffcaa
 
x86_64:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     df6ee5f9bf2b2225627630fa9cff04fd
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     99be12c1700fe2c369b8f97f3eed5a08
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6ad864391cfe2af8094d6da5bb671fce
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     f2de012dc946a0819e2bab2a2dfe51d0
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     8ec9a633e97e3eee2d10f45df8858777
 
RHEL Supplementary (v. 5 server)
IA-32:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     9519e9d4f84829d37e989b486353c166
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     f6ad374c0f8e842541f809b3b49b99b9
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     b2c540ecaa7e085e2f403f9b780648c6
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     63e928be3bd988759554b0f679ca7b86
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ba0cd9d867f1c745c8a15acaffdffcaa
 
x86_64:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     df6ee5f9bf2b2225627630fa9cff04fd
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     99be12c1700fe2c369b8f97f3eed5a08
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6ad864391cfe2af8094d6da5bb671fce
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     f2de012dc946a0819e2bab2a2dfe51d0
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2009:1571		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2009:1571		     8ec9a633e97e3eee2d10f45df8858777
 
RHEL Supplementary EUS (v. 5.2.z server)
IA-32:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     9519e9d4f84829d37e989b486353c166
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     f6ad374c0f8e842541f809b3b49b99b9
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     b2c540ecaa7e085e2f403f9b780648c6
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     63e928be3bd988759554b0f679ca7b86
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     ba0cd9d867f1c745c8a15acaffdffcaa
 
x86_64:
java-1.5.0-sun-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1025		     df6ee5f9bf2b2225627630fa9cff04fd
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1025		     99be12c1700fe2c369b8f97f3eed5a08
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1025		     6ad864391cfe2af8094d6da5bb671fce
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1025		     f2de012dc946a0819e2bab2a2dfe51d0
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el5.i586.rpm
File outdated by:  RHSA-2008:1025		     ccac4a69e3c05d202cba341c42d7a0b3
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1025		     8ec9a633e97e3eee2d10f45df8858777
 
Red Hat Enterprise Linux Extras (v. 4)
IA-32:
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     f4fe52a51c33fb75cfa1ab1e08ad2a72
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     f4fe52a51c33fb75cfa1ab1e08ad2a72
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     f4fe52a51c33fb75cfa1ab1e08ad2a72
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm
File outdated by:  RHSA-2009:1571		     f4fe52a51c33fb75cfa1ab1e08ad2a72
 
x86_64:
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6220afc17d8b966d188a1ed55ce57a6c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6220afc17d8b966d188a1ed55ce57a6c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6220afc17d8b966d188a1ed55ce57a6c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm
File outdated by:  RHSA-2009:1571		     6220afc17d8b966d188a1ed55ce57a6c
 
Red Hat Enterprise Linux Extras (v. 4.6.z)
IA-32:
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.i586.rpm     c0829c731e49e9bb51e1b06f41c6d303
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.i586.rpm     ec7ed7d4f41e1fd616264d95a397f003
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.i586.rpm     6419c40658bd9adf7b9449a60d2a3f2b
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.i586.rpm     0317bba0dee0d77548366fd4592c54ef
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-plugin-1.5.0.16-1jpp.2.el4.i586.rpm     d66b5ca5c59ebb554130e3607ffbf5e7
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm     f4fe52a51c33fb75cfa1ab1e08ad2a72
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.i586.rpm     f4fe52a51c33fb75cfa1ab1e08ad2a72
 
x86_64:
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-1.5.0.16-1jpp.2.el4.x86_64.rpm     e075f5c9b5440e251e5ff003d9fb8660
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-demo-1.5.0.16-1jpp.2.el4.x86_64.rpm     29082943fd86c63d99b1b78865a07798
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-devel-1.5.0.16-1jpp.2.el4.x86_64.rpm     dba09cc89b800d4e030544fb735cfde3
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-jdbc-1.5.0.16-1jpp.2.el4.x86_64.rpm     79ff872be8e8d06a545290a763bb017c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm     6220afc17d8b966d188a1ed55ce57a6c
java-1.5.0-sun-src-1.5.0.16-1jpp.2.el4.x86_64.rpm     6220afc17d8b966d188a1ed55ce57a6c
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

452658 - CVE-2008-3107 JDK untrusted applet/application privilege escalation (6661918)
452659 - CVE-2008-3103 OpenJDK JMX allows illegal operations with local monitoring (6332953)
454601 - CVE-2008-3104 Java RE allows Same Origin Policy to be Bypassed (6687932)
454605 - CVE-2008-3111 Java Web Start Buffer overflow vulnerabilities (6557220)
454606 - CVE-2008-3112 Java Web Start, arbitrary file creation (6703909)
454607 - CVE-2008-3113 Java Web Start arbitrary file creation/deletion file with user permissions (6704077)
454608 - CVE-2008-3114 Java Web Start, untrusted application may determine Cache Location (6704074)


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3114
http://www.redhat.com/security/updates/classification/#critical

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/