CVE-2019-11772

In Eclipse OpenJ9 prior to 0.15, the String.getBytes(int, int, byte[], int) method does not verify that the provided byte array is non-null nor that the provided index is in bounds when compiled by the JIT. This allows arbitrary writes to any 32-bit address or beyond the end of a byte array within Java code run under a SecurityManager.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
eclipseopenj9
𝑥
< 0.15.0
𝑥
= Vulnerable software versions
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
java-1.8.0-ibm
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-demo
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-devel
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-headless
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-jdbc
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-plugin
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-src
RHEL 6
1:1.8.0.5.40-1jpp.1.el6_10
fixed
RHEL 7
1:1.8.0.5.40-1jpp.1.el7
fixed
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
java-1.8.0-ibm-webstart
RHEL 8
1:1.8.0.5.40-3.el8_0
fixed
RHEL 8.0 E4S
1:1.8.0.5.40-3.el8_0
fixed
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2019:2585
https://access.redhat.com/errata/RHSA-2019:2590
https://access.redhat.com/errata/RHSA-2019:2592
https://access.redhat.com/errata/RHSA-2019:2737
https://bugs.eclipse.org/bugs/show_bug.cgi?id=549075
https://access.redhat.com/errata/RHSA-2019:2585
https://access.redhat.com/errata/RHSA-2019:2590
https://access.redhat.com/errata/RHSA-2019:2592
https://access.redhat.com/errata/RHSA-2019:2737
https://bugs.eclipse.org/bugs/show_bug.cgi?id=549075