Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian: DLA-2635-1 Critical: Libspring-Java Remote Exec and DoS

debian lts
Calendar Grey April 23, 2021
Dist Debian Esm H88
Debian LTS notice DLA-2635-2 highlights vulnerabilities in libspring-java, featuring potential remote exploitation and service disruption risks.
Multiple vulnerabilities were discovered in libspring-java, a modular Java/J2EE application framework

Summary

CVE-2018-1270

Spring Framework allows applications to expose STOMP over
WebSocket endpoints with a simple, in-memory STOMP broker through
the spring-messaging module. A malicious user (or attacker) can
craft a message to the broker that can lead to a remote code
execution attack.

CVE-2018-11039

Spring Framework allows web applications to change the HTTP
request method to any HTTP method (including TRACE) using the
HiddenHttpMethodFilter in Spring MVC. If an application has a
pre-existing XSS vulnerability, a malicious user (or attacker) can
use this filter to escalate to an XST (Cross Site Tracing) attack.

CVE-2018-11040

Spring Framework allows web applications to enable cross-domain
requests via JSONP (JSON with Padding) through
AbstractJsonpResponseBodyAdvice for REST controllers and
MappingJackson2JsonView for browser requests. Both are not enabled
by default in Spring Framework nor Spring Boot, however, when

Read the Full Advisory


Severity
critical
Lowest
Low
Medium
High
Critical

Package: libspring-java
Version: 4.3.5-1+deb9u1
CVE ID: CVE-2018-1270 CVE-2018-11039 CVE-2018-11040 CVE-2018-15756
Debian Bug: 895114 911786

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here