Bug 1567545 (CVE-2018-2797) - CVE-2018-2797 OpenJDK: unbounded memory allocation during deserialization in TabularDataSupport (JMX, 8189985)
Summary: CVE-2018-2797 OpenJDK: unbounded memory allocation during deserialization in ...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2018-2797
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: Engineering1559768 Engineering1559769 Engineering1559770 Engineering1559771 Engineering1559773 Engineering1559774 Engineering1559775 Engineering1559776 Engineering1565346 Engineering1565347 Engineering1565348 Engineering1565349 Engineering1565350 Engineering1565351 Engineering1565352 Engineering1565353 Engineering1565511 Engineering1565512 Engineering1565513 Engineering1565514 Engineering1577848 Engineering1577849 Engineering1577850 Engineering1577851 Engineering1577855 Engineering1577856 Engineering1577857 Engineering1577858 Engineering1579406 Engineering1579410
Blocks: Embargoed1559778
TreeView+ depends on / blocked
 
Reported: 2018-04-14 20:41 UTC by Tomas Hoger
Modified: 2019-09-29 14:37 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2018-05-24 20:51:58 UTC

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2018:1188 0 None None None 2018-04-19 17:00:54 UTC
Red Hat Product Errata RHSA-2018:1191 0 None None None 2018-04-19 18:01:41 UTC
Red Hat Product Errata RHSA-2018:1201 0 None None None 2018-04-23 17:12:53 UTC
Red Hat Product Errata RHSA-2018:1202 0 None None None 2018-04-23 17:16:04 UTC
Red Hat Product Errata RHSA-2018:1203 0 None None None 2018-04-23 17:20:50 UTC
Red Hat Product Errata RHSA-2018:1204 0 None None None 2018-04-23 17:18:36 UTC
Red Hat Product Errata RHSA-2018:1205 0 None None None 2018-04-23 17:22:55 UTC
Red Hat Product Errata RHSA-2018:1206 0 None None None 2018-04-23 17:30:59 UTC
Red Hat Product Errata RHSA-2018:1270 0 None None None 2018-04-30 16:17:50 UTC
Red Hat Product Errata RHSA-2018:1278 0 None None None 2018-05-02 22:06:42 UTC
Red Hat Product Errata RHSA-2018:1721 0 None None None 2018-05-24 18:52:57 UTC
Red Hat Product Errata RHSA-2018:1722 0 None None None 2018-05-24 18:57:25 UTC
Red Hat Product Errata RHSA-2018:1723 0 None None None 2018-05-24 19:01:29 UTC
Red Hat Product Errata RHSA-2018:1724 0 None None None 2018-05-24 19:05:05 UTC
Red Hat Product Errata RHSA-2018:1974 0 None None None 2018-06-25 14:57:02 UTC
Red Hat Product Errata RHSA-2018:1975 0 None None None 2018-06-25 14:57:35 UTC

Description Tomas Hoger 2018-04-14 20:41:07 UTC 
It was discovered that the implementation of the TabularDataSupport class in the JMX component of OpenJDK did not limit the amount of memory allocated when creating object instance from a serialized form.  A specially-crafted input could cause a Java application to use an excessive amount of memory when deserialized.
Comment 1 Tomas Hoger 2018-04-17 20:55:38 UTC 
Public now via Oracle CPU April 2018:

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixJAVA

The issue was fixed in Oracle JDK 10.0.1, 8u171, 7u181, and 6u191.
Comment 2 errata-xmlrpc 2018-04-19 17:00:48 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:1188 https://access.redhat.com/errata/RHSA-2018:1188
Comment 3 errata-xmlrpc 2018-04-19 18:01:34 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:1191 https://access.redhat.com/errata/RHSA-2018:1191
Comment 4 Tomas Hoger 2018-04-20 20:46:44 UTC 
OpenJDK-8 upstream commit:

http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/17905e00cda4
Comment 5 errata-xmlrpc 2018-04-23 17:12:48 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 7

Via RHSA-2018:1201 https://access.redhat.com/errata/RHSA-2018:1201
Comment 6 errata-xmlrpc 2018-04-23 17:15:57 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 6

Via RHSA-2018:1202 https://access.redhat.com/errata/RHSA-2018:1202
Comment 7 errata-xmlrpc 2018-04-23 17:18:30 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 7

Via RHSA-2018:1204 https://access.redhat.com/errata/RHSA-2018:1204
Comment 8 errata-xmlrpc 2018-04-23 17:20:44 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 6

Via RHSA-2018:1203 https://access.redhat.com/errata/RHSA-2018:1203
Comment 9 errata-xmlrpc 2018-04-23 17:22:49 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 7

Via RHSA-2018:1205 https://access.redhat.com/errata/RHSA-2018:1205
Comment 10 errata-xmlrpc 2018-04-23 17:30:53 UTC 
This issue has been addressed in the following products:

  Oracle Java for Red Hat Enterprise Linux 6

Via RHSA-2018:1206 https://access.redhat.com/errata/RHSA-2018:1206
Comment 11 errata-xmlrpc 2018-04-30 16:17:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:1270 https://access.redhat.com/errata/RHSA-2018:1270
Comment 12 errata-xmlrpc 2018-05-02 22:06:37 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:1278 https://access.redhat.com/errata/RHSA-2018:1278
Comment 15 errata-xmlrpc 2018-05-24 18:52:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Supplementary

Via RHSA-2018:1721 https://access.redhat.com/errata/RHSA-2018:1721
Comment 16 errata-xmlrpc 2018-05-24 18:57:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6 Supplementary

Via RHSA-2018:1722 https://access.redhat.com/errata/RHSA-2018:1722
Comment 17 errata-xmlrpc 2018-05-24 19:01:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Supplementary

Via RHSA-2018:1723 https://access.redhat.com/errata/RHSA-2018:1723
Comment 18 errata-xmlrpc 2018-05-24 19:05:00 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6 Supplementary

Via RHSA-2018:1724 https://access.redhat.com/errata/RHSA-2018:1724
Comment 19 errata-xmlrpc 2018-06-25 14:56:57 UTC 
This issue has been addressed in the following products:

  Red Hat Satellite 5.6
  Red Hat Satellite 5.7

Via RHSA-2018:1974 https://access.redhat.com/errata/RHSA-2018:1974
Comment 20 errata-xmlrpc 2018-06-25 14:57:30 UTC 
This issue has been addressed in the following products:

  Red Hat Satellite 5.8

Via RHSA-2018:1975 https://access.redhat.com/errata/RHSA-2018:1975
Note You need to log in before you can comment on or make changes to this bug.