Bug 1856885 (CVE-2020-14621) - CVE-2020-14621 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)
Summary: CVE-2020-14621 OpenJDK: XML validation manipulation due to incomplete applica...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2020-14621
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1838816 1838817 1838819 1838820 1838823 1838825 1838826 1838827 1838828 1838829 1838830 1838831 1838832 1865914 1865915 1865916 1865917 1865919 1865920 1865921 1866314
Blocks: 1838813
TreeView+ depends on / blocked
 
Reported: 2020-07-14 15:58 UTC by Tomas Hoger
Modified: 2024-03-25 16:09 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2020-08-06 01:27:49 UTC
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2020:2982 0 None None None 2020-07-16 15:08:34 UTC
Red Hat Product Errata RHBA-2020:3000 0 None None None 2020-07-20 12:50:59 UTC
Red Hat Product Errata RHBA-2020:3001 0 None None None 2020-07-20 13:33:06 UTC
Red Hat Product Errata RHBA-2020:3125 0 None None None 2020-07-23 10:32:55 UTC
Red Hat Product Errata RHBA-2020:3126 0 None None None 2020-07-23 10:33:22 UTC
Red Hat Product Errata RHBA-2020:3186 0 None None None 2020-07-28 15:01:11 UTC
Red Hat Product Errata RHBA-2020:3210 0 None None None 2020-07-29 15:40:03 UTC
Red Hat Product Errata RHBA-2020:3213 0 None None None 2020-07-29 15:38:23 UTC
Red Hat Product Errata RHBA-2020:3214 0 None None None 2020-07-29 15:38:54 UTC
Red Hat Product Errata RHBA-2020:3312 0 None None None 2020-08-04 13:28:10 UTC
Red Hat Product Errata RHSA-2020:2968 0 None None None 2020-07-16 10:04:22 UTC
Red Hat Product Errata RHSA-2020:2969 0 None None None 2020-07-16 09:31:38 UTC
Red Hat Product Errata RHSA-2020:2970 0 None None None 2020-07-16 08:51:23 UTC
Red Hat Product Errata RHSA-2020:2972 0 None None None 2020-07-16 09:56:24 UTC
Red Hat Product Errata RHSA-2020:2985 0 None None None 2020-07-16 16:30:47 UTC
Red Hat Product Errata RHSA-2020:3098 0 None None None 2020-07-22 12:39:27 UTC
Red Hat Product Errata RHSA-2020:3099 0 None None None 2020-07-22 12:41:18 UTC
Red Hat Product Errata RHSA-2020:3100 0 None None None 2020-07-22 12:39:52 UTC
Red Hat Product Errata RHSA-2020:3101 0 None None None 2020-07-22 12:41:48 UTC
Red Hat Product Errata RHSA-2020:3386 0 None None None 2020-08-10 15:13:20 UTC
Red Hat Product Errata RHSA-2020:3387 0 None None None 2020-08-10 15:16:35 UTC
Red Hat Product Errata RHSA-2020:3388 0 None None None 2020-08-10 15:16:04 UTC
Red Hat Product Errata RHSA-2020:5585 0 None None None 2020-12-16 15:20:35 UTC

Description Tomas Hoger 2020-07-14 15:58:41 UTC
A flaw was found in the way the XMLSchemaValidator class in the JAXP component of OpenJDK enforced the "use-grammar-pool-only" feature.  A specially-crafted XML file could possibly use this flaw to manipulate with the validation process in certain cases.

Comment 1 Tomas Hoger 2020-07-15 09:15:47 UTC
Public now via Oracle CPU July 2020:

https://www.oracle.com/security-alerts/cpujul2020.html#AppendixJAVA

Fixed in Oracle Java SE 14.0.2, 11.0.8, 8u261, and 7u271.

Comment 2 errata-xmlrpc 2020-07-16 08:51:21 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2020:2970 https://access.redhat.com/errata/RHSA-2020:2970

Comment 3 errata-xmlrpc 2020-07-16 09:31:36 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2020:2969 https://access.redhat.com/errata/RHSA-2020:2969

Comment 4 errata-xmlrpc 2020-07-16 09:56:22 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2020:2972 https://access.redhat.com/errata/RHSA-2020:2972

Comment 5 errata-xmlrpc 2020-07-16 10:04:20 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2020:2968 https://access.redhat.com/errata/RHSA-2020:2968

Comment 6 errata-xmlrpc 2020-07-16 16:30:45 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2020:2985 https://access.redhat.com/errata/RHSA-2020:2985

Comment 7 errata-xmlrpc 2020-07-22 12:39:24 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions

Via RHSA-2020:3098 https://access.redhat.com/errata/RHSA-2020:3098

Comment 8 errata-xmlrpc 2020-07-22 12:39:49 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions

Via RHSA-2020:3100 https://access.redhat.com/errata/RHSA-2020:3100

Comment 9 errata-xmlrpc 2020-07-22 12:41:13 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Extended Update Support

Via RHSA-2020:3099 https://access.redhat.com/errata/RHSA-2020:3099

Comment 10 errata-xmlrpc 2020-07-22 12:41:44 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Extended Update Support

Via RHSA-2020:3101 https://access.redhat.com/errata/RHSA-2020:3101

Comment 11 Tomas Hoger 2020-07-28 12:10:34 UTC
OpenJDK-11 upstream commit:
http://hg.openjdk.java.net/jdk-updates/jdk11u/rev/59f8565ee5e2

OpenJDK-8 upstream commit:
http://hg.openjdk.java.net/jdk8u/jdk8u/jaxp/rev/63884b34cac1

Comment 12 Product Security DevOps Team 2020-08-06 01:27:49 UTC
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2020-14621

Comment 13 errata-xmlrpc 2020-08-10 15:13:18 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2020:3386 https://access.redhat.com/errata/RHSA-2020:3386

Comment 14 errata-xmlrpc 2020-08-10 15:16:01 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Supplementary

Via RHSA-2020:3388 https://access.redhat.com/errata/RHSA-2020:3388

Comment 15 errata-xmlrpc 2020-08-10 15:16:33 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6 Supplementary

Via RHSA-2020:3387 https://access.redhat.com/errata/RHSA-2020:3387

Comment 21 errata-xmlrpc 2020-12-16 15:21:04 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Supplementary

Via RHSA-2020:5585 https://access.redhat.com/errata/RHSA-2020:5585


Note You need to log in before you can comment on or make changes to this bug.