Operating System:

[LINUX]

Published:

09 September 2021

Protect yourself against future threats.

//Service

Security Bulletins

Receive up to date and consistent security bulletins across a wide range of vendors, streamlining security patching.

Read more
Resources > Security Bulletins > ESB-2021.3040 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2021.3040
        Security Bulletin: Multiple security vulnerabilities affect
                      Liberty for Java for IBM Cloud
                             9 September 2021

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           Liberty for Java
Publisher:         IBM
Operating System:  Linux variants
Impact/Access:     Execute Arbitrary Code/Commands -- Remote with User Interaction
                   Modify Arbitrary Files          -- Remote with User Interaction
                   Denial of Service               -- Remote/Unauthenticated      
                   Access Confidential Data        -- Remote with User Interaction
                   Reduced Security                -- Remote with User Interaction
Resolution:        Patch/Upgrade
CVE Names:         CVE-2021-2432 CVE-2021-2388 CVE-2021-2369
                   CVE-2021-2341  

Reference:         ESB-2021.2815
                   ESB-2021.2757
                   ESB-2021.2474

Original Bulletin: 
   https://www.ibm.com/support/pages/node/6487067

- --------------------------BEGIN INCLUDED TEXT--------------------

Multiple security vulnerabilities affect Liberty for Java for IBM Cloud

Document Information

Document number    : 6487067
Modified date      : 07 September 2021
Product            : Liberty for Java
Software version   : All
Operating system(s): Linux

Summary

Multiple vulnerabilities in IBM Java SDK affect Liberty for Java for IBM Cloud
July 2021 CPU.

Vulnerability Details

CVEID: CVE-2021-2388
DESCRIPTION: An unspecified vulnerability in Java SE related to the VM
component could allow an unauthenticated attacker to take control of the
system.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/
205815 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)

CVEID: CVE-2021-2369
DESCRIPTION: An unspecified vulnerability in Java SE related to the Library
component could allow an unauthenticated attacker to cause no confidentiality
impact, low integrity impact, and no availability impact.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/
205796 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)

CVEID: CVE-2021-2432
DESCRIPTION: An unspecified vulnerability in Java SE related to the JNDI
component could allow an unauthenticated attacker to cause a denial of service
resulting in a low availability impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/
205856 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID: CVE-2021-2341
DESCRIPTION: An unspecified vulnerability in Java SE related to the Networking
component could allow an unauthenticated attacker to obtain sensitive
information resulting in a low confidentiality impact using unknown attack
vectors.
CVSS Base score: 3.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/
205768 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)

Affected Products and Versions

These vulnerabilities affect all versions of Liberty for Java in IBM Cloud up
to and including v3.60.

Remediation/Fixes

To upgrade to Liberty for Java v3.61-20210826-1015 or higher, you must re-stage
or re-push your application

To find the current version of Liberty for Java in IBM Cloud being used, from
the command-line Cloud Foundry client by running the following commands:

cf ssh <appname> -c cat "staging_info.yml"

Look for the following lines:

{"detected_buildpack":"Liberty for Java(TM) (WAR, liberty-21.0.0_6,
buildpack-v3.60-20210730-0620, ibmjdk-1.8.0_sr6fp31-20210510, env)
","start_command":".liberty/initial_startup.rb"}

To re-stage your application using the command-line Cloud Foundry client, use
the following command:

cf restage <appname>

To re-push your application using the command-line Cloud Foundry client, use
the following command:

cf push <appname>

Workarounds and Mitigations

None

Change History

07 Sep 2021: Initial Publication

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBYTmi4+NLKJtyKPYoAQg+aRAAguaEyztniTYk58Y9gOwZLyIGKjTJRWX+
8uS9pCM+siZImT4YS/4SheBWciileKGNgLsOvt+L6rLz7oeCocR/DfSww9PlE1zs
JPrY/f/+L1nQ0HxPfePdLsWXBQxkuD7PyPO/NQW5UEvXD5NK4r62ZWZJtgT9kedr
krof0ngMda3oxwNRNoUrqyUWPvraRlclx/BU0zf75fWTjDJawDA2B6lOizfxmaIo
z17apY29sdZkj8BPSK9/EVeX7dCcDTml2OU96sawbeqR3S+KKKN7uKCHlj7NC6PD
y331WiDCFQ9sWYiQNRw9KEV1DMDqjARLM/z1NX6akZj92z3CAgBq7AXuy83Klys4
qvUs6s8D36ntOVtGgEc+yNi7XG+E+FJrQfQXQyUYzFxsqw81zvwlJ0/c+B0YZTwV
6jb8zA940l2MA0G0pXYNhFbmJzQEIq4kPB+9gKSUMKaEwcUSviciV9T8PGu7kjBR
TUhVIM+Zmb0LtDcILUBflnQQSVeM56z79UPkVLz0DltlBDLJmA03QGMi+kuF6z6J
qusbo6PXnr1K6ONnGpvo0hVX3EDjShpGsODHL8mcouZu6mhTbse0XUetChlRUFeR
qy39HdIdu/H8raOIwhiVA+IMHUIzIP1ppPO6P19LSJ+622RmWrTL83g+O6zLfLbh
9IsGwgq2kBc=
=om4B
-----END PGP SIGNATURE-----