製品・ソフトウェアに関する情報

JVN脆弱性詳細

IBM SDK, Java Technology Edition の com.ibm.rmi.io.SunSerializableFactory クラスにおけるサンドボックス保護メカニズムを回避される脆弱性

タイトル	IBM SDK, Java Technology Edition の com.ibm.rmi.io.SunSerializableFactory クラスにおけるサンドボックス保護メカニズムを回避される脆弱性
概要	IBM SDK, Java Technology Edition の com.ibm.rmi.io.SunSerializableFactory クラスは、AccessController doPrivileged ブロック内のクラスを適切にデシリアライズしないため、サンドボックス保護メカニズムを回避され、任意のコードを実行される脆弱性が存在します。本脆弱性は、CVE-2013-5456 に対する修正が不十分だったことによる脆弱性です。補足情報 : CWE による脆弱性タイプは、CWE-502: Deserialization of Untrusted Data (信頼性のないデータのデシリアライゼーション) と識別されています。 http://cwe.mitre.org/data/definitions/502.html
想定される影響	第三者により、サンドボックス保護メカニズムを回避され、任意のコードを実行される可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2016年4月26日0:00
登録日	2016年6月8日18:08
最終更新日	2016年8月26日17:56

CVSS3.0 : 重要
スコア	8.1
ベクター	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS2.0 : 警告
スコア	5.1
ベクター	AV:N/AC:H/Au:N/C:P/I:P/A:P

影響を受けるシステム

レッドハット

Red Hat Enterprise Linux Desktop Supplementary (v. 6)

Red Hat Enterprise Linux Desktop Supplementary (v. 7)

Red Hat Enterprise Linux HPC Node Supplementary (v. 6)

Red Hat Enterprise Linux HPC Node Supplementary (v. 7)

Red Hat Enterprise Linux Server Supplementary (v. 6)

Red Hat Enterprise Linux Server Supplementary (v. 7)

Red Hat Enterprise Linux Server Supplementary EUS (v. 6.7.z)

Red Hat Enterprise Linux Workstation Supplementary (v. 6)

Red Hat Enterprise Linux Workstation Supplementary (v. 7)

RHEL Desktop Supplementary (v. 5 client)

RHEL Supplementary (v. 5 server)

IBM

IBM SDK, Java Technology Edition 6 R1 SR8 FP25 (6.1.8.25) 未満の 6 R1

IBM SDK, Java Technology Edition 6 SR16 FP25 (6.0.16.25) 未満の 6

IBM SDK, Java Technology Edition 7 R1 SR3 FP40 (7.1.3.40) 未満の 7 R1

IBM SDK, Java Technology Edition 7 SR9 FP40 (7.0.9.40) 未満の 7

IBM SDK, Java Technology Edition 8 SR3 (8.0.3.0) 未満の 8

SUSE

SUSE Linux Enterprise Module for Legacy Software 12

SUSE Linux Enterprise Server 11-SP2-LTSS

SUSE Linux Enterprise Server 11-SP3-LTSS

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Server 12

SUSE Linux Enterprise Server 12-SP1

SUSE Linux Enterprise Software Development Kit 11-SP4

SUSE Linux Enterprise Software Development Kit 12

SUSE Linux Enterprise Software Development Kit 12-SP1

SUSE Manager 2.1

SUSE Manager Proxy 2.1

SUSE OpenStack Cloud 5

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-0376	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0376
National Vulnerability Database (NVD)
2	CVE-2016-0376	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0376

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-Other	https://www.ipa.go.jp/security/vuln/CWE.html#CWEOther

ベンダー情報

No	名前	URL
IBM APAR
1	IX90171	http://www-01.ibm.com/support/docview.wss?uid=swg1IX90171
IBM Support Document
2	1980826	http://www-01.ibm.com/support/docview.wss?uid=swg21980826
opensuse-security-announce
3	SUSE-SU-2016:1299	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html
4	SUSE-SU-2016:1300	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html
5	SUSE-SU-2016:1303	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html
6	SUSE-SU-2016:1378	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html
7	SUSE-SU-2016:1379	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html
Red Hat Security Advisory
8	RHSA-2016:0701	http://rhn.redhat.com/errata/RHSA-2016-0701.html
9	RHSA-2016:0702	http://rhn.redhat.com/errata/RHSA-2016-0702.html
10	RHSA-2016:0708	http://rhn.redhat.com/errata/RHSA-2016-0708.html
11	RHSA-2016:0716	http://rhn.redhat.com/errata/RHSA-2016-0716.html

変更履歴

No	変更内容	変更日
0	[2016年06月08日] 掲載 [2016年08月26日] ベンダ情報：レッドハット (RHSA-2016:0708) を追加ベンダ情報：レッドハット (RHSA-2016:0716) を追加	2018年2月17日10:37

NVD脆弱性情報

CVE-2016-0376

概要	The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in an AccessController doPrivileged block, which allows remote attackers to bypass a sandbox protection mechanism and execute arbitrary code as demonstrated by the readValue method of the com.ibm.rmi.io.ValueHandlerPool.ValueHandlerSingleton class, which implements the javax.rmi.CORBA.ValueHandler interface. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-5456.
公表日	2016年6月3日23:59
登録日	2021年1月26日14:03
最終更新日	2024年11月21日11:41

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:o:novell:suse_manager:2.1:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4::::::
cpe:2.3:o:novell:suse_manager_proxy:2.1:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_module_for_legacy_software:12:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1::::::
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp2:::ltss:::*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:::ltss:::*
cpe:2.3:o:novell:suse_openstack_cloud:5:::::::*
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:11.0:sp4::::::
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:sp1::::::
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:::::::*

構成2	以上	以下	より上	未満
cpe:2.3:a:ibm:java_sdk:::::technology:::*	6.0.0.0			6.0.16.25
cpe:2.3:a:ibm:java_sdk:::::technology:::*	6.1.0.0			6.1.8.25
cpe:2.3:a:ibm:java_sdk:::::technology:::*	7.0.0.0			7.0.9.40
cpe:2.3:a:ibm:java_sdk:::::technology:::*	7.1.0.0			7.1.3.40
cpe:2.3:a:ibm:java_sdk:::::technology:::*	8.0.0.0			8.0.3.0

構成3	以上	以下	より上	未満
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:a:redhat:satellite:5.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:::::::*
cpe:2.3:a:redhat:satellite:5.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:::::::*

関連情報、対策とツール

No	URL	タグ
1	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html	Mailing List Third Party Advisory
2	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html	Mailing List Third Party Advisory
3	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html	Third Party Advisory
4	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html	Third Party Advisory
5	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html	Mailing List Third Party Advisory
6	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html	Mailing List Third Party Advisory
7	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html	Mailing List Third Party Advisory
8	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html	Mailing List Third Party Advisory
9	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html	Mailing List Third Party Advisory
10	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html	Mailing List Third Party Advisory
11	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00061.html	Mailing List Third Party Advisory
12	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00061.html	Mailing List Third Party Advisory
13	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00067.html	Mailing List Third Party Advisory
14	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00067.html	Mailing List Third Party Advisory
15	http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00002.html	Mailing List Third Party Advisory
16	http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00002.html	Mailing List Third Party Advisory
17	http://rhn.redhat.com/errata/RHSA-2016-0701.html	Third Party Advisory
18	http://rhn.redhat.com/errata/RHSA-2016-0701.html	Third Party Advisory
19	http://rhn.redhat.com/errata/RHSA-2016-0702.html	Third Party Advisory
20	http://rhn.redhat.com/errata/RHSA-2016-0702.html	Third Party Advisory
21	http://rhn.redhat.com/errata/RHSA-2016-0708.html	Third Party Advisory
22	http://rhn.redhat.com/errata/RHSA-2016-0708.html	Third Party Advisory
23	http://rhn.redhat.com/errata/RHSA-2016-0716.html	Third Party Advisory
24	http://rhn.redhat.com/errata/RHSA-2016-0716.html	Third Party Advisory
25	http://rhn.redhat.com/errata/RHSA-2016-1039.html	Third Party Advisory
26	http://rhn.redhat.com/errata/RHSA-2016-1039.html	Third Party Advisory
27	http://seclists.org/fulldisclosure/2016/Apr/43	Mailing List Third Party Advisory VDB Entry
28	http://seclists.org/fulldisclosure/2016/Apr/43	Mailing List Third Party Advisory VDB Entry
29	http://www.security-explorations.com/materials/SE-2012-01-IBM-5.pdf	Third Party Advisory VDB Entry
30	http://www.security-explorations.com/materials/SE-2012-01-IBM-5.pdf	Third Party Advisory VDB Entry
31	http://www.securityfocus.com/archive/1/538066/100/100/threaded	Third Party Advisory VDB Entry
32	http://www.securityfocus.com/archive/1/538066/100/100/threaded	Third Party Advisory VDB Entry
33	http://www.securityfocus.com/bid/89192	Third Party Advisory VDB Entry
34	http://www.securityfocus.com/bid/89192	Third Party Advisory VDB Entry
35	http://www.securitytracker.com/id/1035953	Third Party Advisory VDB Entry
36	http://www.securitytracker.com/id/1035953	Third Party Advisory VDB Entry
37	http://www-01.ibm.com/support/docview.wss?uid=swg1IX90171	Vendor Advisory
38	http://www-01.ibm.com/support/docview.wss?uid=swg1IX90171	Vendor Advisory
39	http://www-01.ibm.com/support/docview.wss?uid=swg21980826	Vendor Advisory
40	http://www-01.ibm.com/support/docview.wss?uid=swg21980826	Vendor Advisory
41	https://access.redhat.com/errata/RHSA-2016:1430	Third Party Advisory
42	https://access.redhat.com/errata/RHSA-2016:1430	Third Party Advisory
43	https://access.redhat.com/errata/RHSA-2017:1216	Third Party Advisory
44	https://access.redhat.com/errata/RHSA-2017:1216	Third Party Advisory

共通脆弱性一覧

構成1	以上	以下	より上	未満
cpe:2.3:o:novell:suse_manager:2.1:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4::::::
cpe:2.3:o:novell:suse_manager_proxy:2.1:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_module_for_legacy_software:12:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1::::::
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp2:::ltss:::*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:::ltss:::*
cpe:2.3:o:novell:suse_openstack_cloud:5:::::::*
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:11.0:sp4::::::
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:sp1::::::
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:::::::*

構成3	以上	以下	より上	未満
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:a:redhat:satellite:5.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:::::::*
cpe:2.3:a:redhat:satellite:5.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:::::::*