Bug 2297977 (CVE-2024-21147)
| Summary: | CVE-2024-21147 OpenJDK: RangeCheckElimination array index overflow (8323231) | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Mauro Matteo Cascella <mcascell> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | ahughes, caswilli, chazlett, fjansen, jsamir, kaycoth, kholdawa, khosford, lcouzens, mbalao, mskarbek, neugens, pjindal, security-response-team, sraghupu, sthirugn, vkrizan |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: |
A vulnerability in Oracle Java SE and GraalVM (Hotspot component) affects multiple versions, allowing an unauthenticated attacker with network access to modify or access critical data. Exploitation is difficult but possible via APIs, such as web services supplying data. It also impacts Java deployments running untrusted code in a sandbox.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2297109 | ||
| Bug Blocks: | 2297112 | ||
|
Description
Mauro Matteo Cascella
2024-07-15 16:59:49 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2024:4564 https://access.redhat.com/errata/RHSA-2024:4564 This issue has been addressed in the following products: Red Hat Build of OpenJDK 11.0.24 Via RHSA-2024:4565 https://access.redhat.com/errata/RHSA-2024:4565 This issue has been addressed in the following products: Red Hat Build of OpenJDK 17.0.12 Via RHSA-2024:4569 https://access.redhat.com/errata/RHSA-2024:4569 This issue has been addressed in the following products: Red Hat Build of OpenJDK 21.0.4 Via RHSA-2024:4571 https://access.redhat.com/errata/RHSA-2024:4571 This issue has been addressed in the following products: Red Hat Build of OpenJDK 17.0.12 Via RHSA-2024:4570 https://access.redhat.com/errata/RHSA-2024:4570 This issue has been addressed in the following products: Red Hat Build of OpenJDK 21.0.4 Via RHSA-2024:4572 https://access.redhat.com/errata/RHSA-2024:4572 This issue has been addressed in the following products: Red Hat Build of OpenJDK 11.0.24 Via RHSA-2024:4566 https://access.redhat.com/errata/RHSA-2024:4566 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat Enterprise Linux 9 Via RHSA-2024:4567 https://access.redhat.com/errata/RHSA-2024:4567 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 9 Via RHSA-2024:4573 https://access.redhat.com/errata/RHSA-2024:4573 This issue has been addressed in the following products: Red Hat Build of OpenJDK 8u422 Via RHSA-2024:4561 https://access.redhat.com/errata/RHSA-2024:4561 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat Enterprise Linux 9 Via RHSA-2024:4568 https://access.redhat.com/errata/RHSA-2024:4568 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat Enterprise Linux 9 Via RHSA-2024:4563 https://access.redhat.com/errata/RHSA-2024:4563 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2024:4560 https://access.redhat.com/errata/RHSA-2024:4560 This issue has been addressed in the following products: Red Hat Build of OpenJDK 8u422 Via RHSA-2024:4562 https://access.redhat.com/errata/RHSA-2024:4562 OpenJDK-8 upstream commit: https://github.com/openjdk/jdk8u/commit/bffe2842ea81ed73668e72bc1009f21ac4c2023f OpenJDK-11 upstream commit: https://github.com/openjdk/jdk11u/commit/806882b1c8e2e0d067d870ebe08965d959ae4269 OpenJDK-17 upstream commit: https://github.com/openjdk/jdk17u/commit/51ac91589efa29194204f115e2072d4da41fd56d OpenJDK-21 upstream commit: https://github.com/openjdk/jdk21u/commit/9e0a9cea810617f2ef5df0dbe1c0d1a75228a5ea |