2108554 – (CVE-2022-34169) CVE-2022-34169 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

Bug 2108554 (CVE-2022-34169) - CVE-2022-34169 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

Summary: CVE-2022-34169 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2022-34169
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2227076 2106502 2106503 2106504 2106505 2106506 2106507 2106508 2106509 2106510 2106511 2106512 2106513 2106514 2106515 2106516 2106517 2106518 2106519 2106520 2106521 2106522 2106523 2106524 2121480
Blocks:	2106494
TreeView+	depends on / blocked

Reported:	2022-07-19 10:26 UTC by Mauro Matteo Cascella
Modified:	2024-05-17 12:55 UTC (History)
CC List:	103 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2022-08-30 17:55:55 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2022:5690	None	None	None	2022-07-21 21:02:30 UTC
Red Hat Product Errata	RHBA-2022:5705	None	None	None	2022-07-25 22:03:14 UTC
Red Hat Product Errata	RHBA-2022:5706	None	None	None	2022-07-25 22:01:01 UTC
Red Hat Product Errata	RHBA-2022:5707	None	None	None	2022-07-25 21:57:42 UTC
Red Hat Product Errata	RHBA-2022:5708	None	None	None	2022-07-25 22:05:20 UTC
Red Hat Product Errata	RHBA-2022:5710	None	None	None	2022-07-26 10:15:36 UTC
Red Hat Product Errata	RHBA-2022:5712	None	None	None	2022-07-26 12:16:43 UTC
Red Hat Product Errata	RHBA-2022:5722	None	None	None	2022-07-26 15:59:01 UTC
Red Hat Product Errata	RHBA-2022:5724	None	None	None	2022-07-26 16:26:43 UTC
Red Hat Product Errata	RHBA-2022:5728	None	None	None	2022-07-26 21:37:37 UTC
Red Hat Product Errata	RHBA-2022:5750	None	None	None	2022-07-28 12:40:24 UTC
Red Hat Product Errata	RHBA-2022:5751	None	None	None	2022-07-28 12:38:25 UTC
Red Hat Product Errata	RHBA-2022:5752	None	None	None	2022-07-28 14:13:15 UTC
Red Hat Product Errata	RHBA-2022:5763	None	None	None	2022-07-28 19:44:07 UTC
Red Hat Product Errata	RHBA-2022:5782	None	None	None	2022-08-01 11:50:28 UTC
Red Hat Product Errata	RHBA-2022:5783	None	None	None	2022-08-01 11:53:27 UTC
Red Hat Product Errata	RHBA-2022:5784	None	None	None	2022-08-01 11:55:07 UTC
Red Hat Product Errata	RHBA-2022:5873	None	None	None	2022-08-03 08:58:54 UTC
Red Hat Product Errata	RHBA-2022:5882	None	None	None	2022-08-03 10:35:46 UTC
Red Hat Product Errata	RHBA-2022:5885	None	None	None	2022-08-03 15:36:56 UTC
Red Hat Product Errata	RHBA-2022:5886	None	None	None	2022-08-03 15:38:14 UTC
Red Hat Product Errata	RHBA-2022:6025	None	None	None	2022-08-10 03:14:43 UTC
Red Hat Product Errata	RHBA-2022:6031	None	None	None	2022-08-10 07:22:30 UTC
Red Hat Product Errata	RHBA-2022:6045	None	None	None	2022-08-10 14:41:27 UTC
Red Hat Product Errata	RHBA-2022:6049	None	None	None	2022-08-10 17:01:16 UTC
Red Hat Product Errata	RHBA-2022:6050	None	None	None	2022-08-10 17:47:26 UTC
Red Hat Product Errata	RHBA-2022:6059	None	None	None	2022-08-15 08:40:05 UTC
Red Hat Product Errata	RHBA-2022:6067	None	None	None	2022-08-15 10:45:11 UTC
Red Hat Product Errata	RHBA-2022:6076	None	None	None	2022-08-16 10:39:16 UTC
Red Hat Product Errata	RHBA-2022:6077	None	None	None	2022-08-16 10:35:07 UTC
Red Hat Product Errata	RHBA-2022:6112	None	None	None	2022-08-18 11:44:30 UTC
Red Hat Product Errata	RHBA-2022:6140	None	None	None	2022-08-23 18:08:56 UTC
Red Hat Product Errata	RHBA-2022:6186	None	None	None	2022-08-25 08:14:11 UTC
Red Hat Product Errata	RHSA-2022:5681	None	None	None	2022-07-21 15:26:29 UTC
Red Hat Product Errata	RHSA-2022:5683	None	None	None	2022-07-21 15:23:53 UTC
Red Hat Product Errata	RHSA-2022:5684	None	None	None	2022-07-21 15:00:43 UTC
Red Hat Product Errata	RHSA-2022:5685	None	None	None	2022-07-21 14:10:01 UTC
Red Hat Product Errata	RHSA-2022:5687	None	None	None	2022-07-21 16:48:30 UTC
Red Hat Product Errata	RHSA-2022:5695	None	None	None	2022-07-25 14:52:25 UTC
Red Hat Product Errata	RHSA-2022:5696	None	None	None	2022-07-25 15:42:12 UTC
Red Hat Product Errata	RHSA-2022:5697	None	None	None	2022-07-25 15:40:40 UTC
Red Hat Product Errata	RHSA-2022:5698	None	None	None	2022-07-25 18:17:36 UTC
Red Hat Product Errata	RHSA-2022:5700	None	None	None	2022-07-25 15:53:00 UTC
Red Hat Product Errata	RHSA-2022:5701	None	None	None	2022-07-25 15:30:07 UTC
Red Hat Product Errata	RHSA-2022:5709	None	None	None	2022-07-25 23:15:38 UTC
Red Hat Product Errata	RHSA-2022:5726	None	None	None	2022-07-26 18:21:10 UTC
Red Hat Product Errata	RHSA-2022:5736	None	None	None	2022-07-27 13:20:06 UTC
Red Hat Product Errata	RHSA-2022:5753	None	None	None	2022-07-28 15:32:54 UTC
Red Hat Product Errata	RHSA-2022:5754	None	None	None	2022-07-28 15:33:38 UTC
Red Hat Product Errata	RHSA-2022:5755	None	None	None	2022-07-28 15:40:31 UTC
Red Hat Product Errata	RHSA-2022:5756	None	None	None	2022-07-28 15:41:15 UTC
Red Hat Product Errata	RHSA-2022:5757	None	None	None	2022-07-28 15:46:41 UTC
Red Hat Product Errata	RHSA-2022:5758	None	None	None	2022-07-28 15:47:27 UTC

Description Mauro Matteo Cascella 2022-07-19 10:26:32 UTC

An integer truncation issue was found in the Xalan Java XSLT library when processing malicious stylesheets. This flaw could be used to potentially execute arbitrary Java bytecode.

Comment 1 Mauro Matteo Cascella 2022-07-19 23:42:50 UTC

Public now via Oracle CPU July 2022:

https://www.oracle.com/security-alerts/cpujul2022.html#AppendixJAVA

Fixed in Oracle Java SE 7u351, 8u341, 11.0.16, 17.0.4, 18.0.2.

Release notes:
https://www.oracle.com/java/technologies/javase/7-support-relnotes.html#R170_351
https://www.oracle.com/java/technologies/javase/8u341-relnotes.html
https://www.oracle.com/java/technologies/javase/11-0-16-relnotes.html
https://www.oracle.com/java/technologies/javase/17-0-4-relnotes.html
https://www.oracle.com/java/technologies/javase/18-0-2-relnotes.html

Comment 8 errata-xmlrpc 2022-07-21 14:10:00 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions

Via RHSA-2022:5685 https://access.redhat.com/errata/RHSA-2022:5685

Comment 9 errata-xmlrpc 2022-07-21 15:00:41 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Extended Update Support

Via RHSA-2022:5684 https://access.redhat.com/errata/RHSA-2022:5684

Comment 10 errata-xmlrpc 2022-07-21 15:23:51 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2022:5683 https://access.redhat.com/errata/RHSA-2022:5683

Comment 11 errata-xmlrpc 2022-07-21 15:26:28 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2022:5681 https://access.redhat.com/errata/RHSA-2022:5681

Comment 12 errata-xmlrpc 2022-07-21 16:48:28 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2022:5687 https://access.redhat.com/errata/RHSA-2022:5687

Comment 13 errata-xmlrpc 2022-07-25 14:52:22 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2022:5695 https://access.redhat.com/errata/RHSA-2022:5695

Comment 14 errata-xmlrpc 2022-07-25 15:30:05 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions

Via RHSA-2022:5701 https://access.redhat.com/errata/RHSA-2022:5701

Comment 15 errata-xmlrpc 2022-07-25 15:40:38 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2022:5697 https://access.redhat.com/errata/RHSA-2022:5697

Comment 16 errata-xmlrpc 2022-07-25 15:42:09 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2022:5696 https://access.redhat.com/errata/RHSA-2022:5696

Comment 17 errata-xmlrpc 2022-07-25 15:52:57 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Extended Update Support

Via RHSA-2022:5700 https://access.redhat.com/errata/RHSA-2022:5700

Comment 18 errata-xmlrpc 2022-07-25 18:17:33 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2022:5698 https://access.redhat.com/errata/RHSA-2022:5698

Comment 19 errata-xmlrpc 2022-07-25 23:15:35 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2022:5709 https://access.redhat.com/errata/RHSA-2022:5709

Comment 20 errata-xmlrpc 2022-07-26 18:21:07 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2022:5726 https://access.redhat.com/errata/RHSA-2022:5726

Comment 21 errata-xmlrpc 2022-07-27 13:20:04 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2022:5736 https://access.redhat.com/errata/RHSA-2022:5736

Comment 22 errata-xmlrpc 2022-07-28 15:32:51 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 8u342

Via RHSA-2022:5753 https://access.redhat.com/errata/RHSA-2022:5753

Comment 23 errata-xmlrpc 2022-07-28 15:33:36 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 8u342

Via RHSA-2022:5754 https://access.redhat.com/errata/RHSA-2022:5754

Comment 24 errata-xmlrpc 2022-07-28 15:40:28 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 11.0.16

Via RHSA-2022:5755 https://access.redhat.com/errata/RHSA-2022:5755

Comment 25 errata-xmlrpc 2022-07-28 15:41:10 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 11.0.16

Via RHSA-2022:5756 https://access.redhat.com/errata/RHSA-2022:5756

Comment 26 errata-xmlrpc 2022-07-28 15:46:38 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 17.0.4

Via RHSA-2022:5757 https://access.redhat.com/errata/RHSA-2022:5757

Comment 27 errata-xmlrpc 2022-07-28 15:47:25 UTC

This issue has been addressed in the following products:

  Red Hat Build of OpenJDK 17.0.4

Via RHSA-2022:5758 https://access.redhat.com/errata/RHSA-2022:5758

Comment 28 Mauro Matteo Cascella 2022-07-29 17:02:10 UTC

OpenJDK-17 upstream commit:
https://github.com/openjdk/jdk17u/commit/9dcec4db4a6d8fdfc49eefe8028605d9f26848cc

OpenJDK-11 upstream commit:
https://github.com/openjdk/jdk11u/commit/13bf52c8d876528a43be7cb77a1f452d29a21492

OpenJDK-8 upstream commit:
https://github.com/openjdk/jdk8u/commit/3dca446d440e55cbb7dc3555392f4520ec9ff3bc

Comment 30 Product Security DevOps Team 2022-08-30 17:55:51 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-34169

Comment 31 Pedro Sampaio 2023-07-27 17:46:06 UTC

Created xalan-j2 tracking bugs for this issue:

Affects: fedora-all [bug 2227076]

Note You need to log in before you can comment on or make changes to this bug.

adupliak
ahughes
anstephe
asoldano
ataylor
avibelli
bbaranow
bgeorges
bmaxwell
boliveir
brian.stansberry
caswilli
cdewolf
chazlett
chfoley
clement.escoffier
cmiranda
dandread
darran.lofthouse
dbhole
dffrench
dfitzmau
dhanak
dkreling
dosoudil
dpalmer
drichtar
ecerquei
fjansen
fjuma
fmariani
fmongiar
ggrzybek
gmalinko
gsmet
gzaronik
hamadhan
ibek
ivassile
iweiss
janstey
jdowland
jhuttana
jkoops
jmartisk
jnethert
jochrist
jpoth
jrokos
jross
jscholz
jvanek
kaycoth
kverlaen
lgao
lthon
max.andersen
mnovotny
mosmerov
msochure
mstefank
msvehla
mulliken
nengard
neugens
ngough
nwallace
olubyans
pcongius
pdelbell
pdrozd
peholase
pgallagh
pjindal
pmackay
porcelli
probinso
pskopek
rgodfrey
rguimara
rjohnson
rkieley
rmartinc
rowaters
rruss
rstancel
rstepani
rsvoboda
saroy
sausingh
sbiarozk
sdouglas
security-response-team
smaestri
sraghupu
sthirugn
sthorger
swoodman
tcunning
tom.jenkinson
tqvarnst
vkrizan
yfang