CVE-2016-0376

Impact:
Critical
Public Date:
2016-04-14
Bugzilla:
1330986: CVE-2016-0376 IBM JDK: insecure deserialization in CORBA, incorrect CVE-2013-5456 fix

The MITRE CVE dictionary describes this issue as:

The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in an AccessController doPrivileged block, which allows remote attackers to bypass a sandbox protection mechanism and execute arbitrary code as demonstrated by the readValue method of the com.ibm.rmi.io.ValueHandlerPool.ValueHandlerSingleton class, which implements the javax.rmi.CORBA.ValueHandler interface. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-5456.

Find out more about CVE-2016-0376 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v2 metrics

Base Score 6.8
Base Metrics AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.8.0-ibm) RHSA-2016:0716 2016-05-03
Red Hat Satellite 5.6 (RHEL v.6) (java-1.7.1-ibm) RHSA-2017:1216 2017-05-09
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.7.1-ibm) RHSA-2016:0701 2016-04-29
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.8.0-ibm) RHSA-2016:1039 2016-05-11
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.7.1-ibm) RHSA-2016:0701 2016-04-29
Red Hat Enterprise Linux Supplementary 5 (java-1.7.0-ibm) RHSA-2016:0702 2016-04-29
Red Hat Satellite 5.6 (RHEL v.6) (java-1.7.1-ibm) RHSA-2016:1430 2016-07-18
Red Hat Satellite 5.7 (RHEL v.6) (java-1.7.1-ibm) RHSA-2016:1430 2016-07-18
Red Hat Satellite 5.7 (RHEL v.6) (java-1.7.1-ibm) RHSA-2017:1216 2017-05-09
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.6.0-ibm) RHSA-2016:0708 2016-05-02
Red Hat Enterprise Linux Supplementary 5 (java-1.6.0-ibm) RHSA-2016:0708 2016-05-02
Red Hat Satellite 5.6 (RHEL v.5) (java-1.7.0-ibm) RHSA-2016:1430 2016-07-18

External References

Last Modified

CVE description copyright © 2017, The MITRE Corporation