CVE-2022-34169

Published: 19 July 2022

The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. The Apache Xalan Java project is dormant and in the process of being retired. No future releases of Apache Xalan Java to address this issue are expected. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.

Priority

Cvss 3 Severity Score

7.5

Score breakdown

Status

Package	Release	Status
icedtea-web Launchpad, Ubuntu, Debian	bionic	Needs triage
	focal	Needs triage
	impish	Ignored (reached end-of-life)
	jammy	Needs triage
	kinetic	Needs triage
	trusty	Does not exist
	upstream	Needs triage
	xenial	Needs triage
libxalan2-java Launchpad, Ubuntu, Debian	bionic	Needs triage
	focal	Needs triage
	impish	Ignored (reached end-of-life)
	jammy	Needs triage
	kinetic	Needs triage
	trusty	Needs triage
	upstream	Needs triage
	xenial	Needs triage
openjdk-12 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-13 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Needs triage
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-15 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-16 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Needs triage
	impish	Ignored (reached end-of-life)
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-17 Launchpad, Ubuntu, Debian	bionic	Released (17.0.4+8-1~18.04)
	focal	Released (17.0.4+8-1~20.04)
	impish	Ignored (reached end-of-life)
	jammy	Released (17.0.4+8-1~22.04)
	kinetic	Released (17.0.4+8-1)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-18 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Ignored (reached end-of-life)
	jammy	Released (18.0.2+9-2~22.04)
	kinetic	Released (18.0.2+9-2)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
openjdk-8 Launchpad, Ubuntu, Debian	bionic	Released (8u342-b07-0ubuntu1~18.04)
	focal	Released (8u342-b07-0ubuntu1~20.04)
	impish	Ignored (reached end-of-life)
	jammy	Released (8u342-b07-0ubuntu1~22.04)
	kinetic	Not vulnerable (8u342-b07-1)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Released (8u342-b07-0ubuntu1~16.04)
openjdk-9 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Needs triage
openjdk-lts Launchpad, Ubuntu, Debian	bionic	Released (11.0.16+8-0ubuntu1~18.04)
	focal	Released (11.0.16+8-0ubuntu1~20.04)
	impish	Ignored (reached end-of-life)
	jammy	Released (11.0.16+8-0ubuntu1~22.04)
	kinetic	Released (11.0.16+8-0ubuntu1)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist

Severity score breakdown

Parameter	Value
Base score	7.5
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	None
Scope	Unchanged
Confidentiality	None
Integrity impact	High
Availability impact	None
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›