It was discovered that the Elliptic Curve (EC) cryptography code as used in Mozilla NSS (Network Security Services) library and OpenJDK JCE (Java Cryptography Extension) component failed to properly validate EC parameters as used in ECDH_Derive() function, which performs ECDH (Elliptic Curve Diffie-Hellman) key derivation. A remote attacker could use this flaw to disclose sensitive information. The OpenJDK packages as shipped with Red Hat Enterprise Linux 5, 6 and 7 do not build the affected EC code and are therefore not directly affected. Future versions may provide EC support via NSS, see e.g. bug 1075702.
Created attachment 1051378 [details] OpenJDK8 / JCE patch
Public now via Oracle Critical Patch Update - July 2015. Fixed in Oracle Java SE 7u85 and 8u51. External References: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixJAVA
This issue was already known to NSS upstream for a while, and is tracked via the following upstream bug: https://bugzilla.mozilla.org/show_bug.cgi?id=380351 It seems it was handled as low priority issue there, as the only place where NSS called ECDH_Derive() is preceded by a call to EC_ValidatePublicKey(), making another call to EC_ValidatePublicKey() in ECDH_Derive() redundant. However, ECDH_Derive() is part of the exposed NSS API, other applications using NSS may call it without performing parameter validation before the call.
OpenJDK 8 upstream commit: http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/dcc75a75d3a3
This issue has been addressed in the following products: Oracle Java for Red Hat Enterprise Linux 6 Oracle Java for Red Hat Enterprise Linux 7 Oracle Java for Red Hat Enterprise Linux 5 Via RHSA-2015:1242 https://rhn.redhat.com/errata/RHSA-2015-1242.html
This issue has been addressed in the following products: Oracle Java for Red Hat Enterprise Linux 6 Oracle Java for Red Hat Enterprise Linux 7 Via RHSA-2015:1241 https://rhn.redhat.com/errata/RHSA-2015-1241.html
This issue has been addressed in the following products: Supplementary for Red Hat Enterprise Linux 7 Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2015:1485 https://rhn.redhat.com/errata/RHSA-2015-1485.html
This issue has been addressed in the following products: Supplementary for Red Hat Enterprise Linux 5 Via RHSA-2015:1488 https://rhn.redhat.com/errata/RHSA-2015-1488.html
This issue was addressed by Mozilla upstream via the following commit: https://hg.mozilla.org/projects/nss/rev/a3a37589ba7d (This commit is on nss-3.21, no intentions to backport to older versions yet.)