usn-3275-2
Vulnerability from osv_ubuntu
USN-3275-1 fixed vulnerabilities in OpenJDK 8. This update provides the corresponding updates for OpenJDK 7.
Original advisory details:
It was discovered that OpenJDK improperly re-used cached NTLM connections in some situations. A remote attacker could possibly use this to cause a Java application to perform actions with the credentials of a different user. (CVE-2017-3509)
It was discovered that an untrusted library search path flaw existed in the Java Cryptography Extension (JCE) component of OpenJDK. A local attacker could possibly use this to gain the privileges of a Java application. (CVE-2017-3511)
It was discovered that the Java API for XML Processing (JAXP) component in OpenJDK did not properly enforce size limits when parsing XML documents. An attacker could use this to cause a denial of service (processor and memory consumption). (CVE-2017-3526)
It was discovered that the FTP client implementation in OpenJDK did not properly sanitize user inputs. If a user was tricked into opening a specially crafted FTP URL, a remote attacker could use this to manipulate the FTP connection. (CVE-2017-3533)
It was discovered that OpenJDK allowed MD5 to be used as an algorithm for JAR integrity verification. An attacker could possibly use this to modify the contents of a JAR file without detection. (CVE-2017-3539)
It was discovered that the SMTP client implementation in OpenJDK did not properly sanitize sender and recipient addresses. A remote attacker could use this to specially craft email addresses and gain control of a Java application's SMTP connections. (CVE-2017-3544)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2017-3509",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2017-3511",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2017-3526",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2017-3533",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2017-3539",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2017-3544",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:14.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "icedtea-7-jre-jamvm",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-demo",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-jdk",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-jre",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-jre-headless",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-jre-lib",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-jre-zero",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-source",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
},
{
"binary_name": "openjdk-7-tests",
"binary_version": "7u131-2.6.9-0ubuntu0.14.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "openjdk-7",
"purl": "pkg:deb/ubuntu/openjdk-7@7u131-2.6.9-0ubuntu0.14.04.1?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7u131-2.6.9-0ubuntu0.14.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7u25-2.3.12-4ubuntu3",
"7u25-2.3.12-4ubuntu5",
"7u45-2.4.3-3ubuntu1",
"7u45-2.4.3-3ubuntu2",
"7u45-2.4.3-4ubuntu1",
"7u45-2.4.3-4ubuntu2",
"7u51-2.4.4-1ubuntu1",
"7u51-2.4.5-1ubuntu1",
"7u51-2.4.6~pre1-1ubuntu2",
"7u51-2.4.6-1ubuntu3",
"7u51-2.4.6-1ubuntu4",
"7u55-2.4.7-1ubuntu1",
"7u65-2.5.1-4ubuntu1~0.14.04.1",
"7u65-2.5.1-4ubuntu1~0.14.04.2",
"7u65-2.5.2-3~14.04",
"7u71-2.5.3-0ubuntu0.14.04.1",
"7u75-2.5.4-1~trusty1",
"7u79-2.5.5-0ubuntu0.14.04.2",
"7u79-2.5.6-0ubuntu1.14.04.1",
"7u85-2.6.1-5ubuntu0.14.04.1",
"7u91-2.6.3-0ubuntu0.14.04.1",
"7u95-2.6.4-0ubuntu0.14.04.1",
"7u95-2.6.4-0ubuntu0.14.04.2",
"7u101-2.6.6-0ubuntu0.14.04.1",
"7u111-2.6.7-0ubuntu0.14.04.3",
"7u121-2.6.8-1ubuntu0.14.04.1",
"7u121-2.6.8-1ubuntu0.14.04.3"
]
}
],
"aliases": [],
"details": "USN-3275-1 fixed vulnerabilities in OpenJDK 8. This update provides\nthe corresponding updates for OpenJDK 7.\n\nOriginal advisory details:\n\nIt was discovered that OpenJDK improperly re-used cached NTLM\nconnections in some situations. A remote attacker could possibly\nuse this to cause a Java application to perform actions with the\ncredentials of a different user. (CVE-2017-3509)\n\nIt was discovered that an untrusted library search path flaw existed\nin the Java Cryptography Extension (JCE) component of OpenJDK. A\nlocal attacker could possibly use this to gain the privileges of a\nJava application. (CVE-2017-3511)\n\nIt was discovered that the Java API for XML Processing (JAXP) component\nin OpenJDK did not properly enforce size limits when parsing XML\ndocuments. An attacker could use this to cause a denial of service\n(processor and memory consumption). (CVE-2017-3526)\n\nIt was discovered that the FTP client implementation in OpenJDK did\nnot properly sanitize user inputs. If a user was tricked into opening\na specially crafted FTP URL, a remote attacker could use this to\nmanipulate the FTP connection. (CVE-2017-3533)\n\nIt was discovered that OpenJDK allowed MD5 to be used as an algorithm\nfor JAR integrity verification. An attacker could possibly use this\nto modify the contents of a JAR file without detection. (CVE-2017-3539)\n\nIt was discovered that the SMTP client implementation in OpenJDK\ndid not properly sanitize sender and recipient addresses. A remote\nattacker could use this to specially craft email addresses and gain\ncontrol of a Java application\u0027s SMTP connections. (CVE-2017-3544)\n",
"id": "USN-3275-2",
"modified": "2026-02-10T04:41:07Z",
"published": "2017-05-15T23:50:21Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3275-2"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3509"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3511"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3526"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3533"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3539"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-3544"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "openjdk-7 vulnerabilities",
"upstream": [
"UBUNTU-CVE-2017-3509",
"UBUNTU-CVE-2017-3511",
"UBUNTU-CVE-2017-3526",
"UBUNTU-CVE-2017-3533",
"UBUNTU-CVE-2017-3539",
"UBUNTU-CVE-2017-3544"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.