Score:0

Server

How to fix these vulnerability "" (CVE-2020-2781) ** Upgrade IBM Java to version 7.0.10.65 "" in rhel 7 server

Newlinux-men

12/27/22, 5:54 PM

I got this type of vulnerabilities on a rhel server after scan "(CVE-2020-2781) ** Upgrade IBM Java to version 7.0.10.65 Download and apply the upgrade from: https://www.ibm.com/developerworks/java/jdk/""

Can I fix this vulnerability by install or upgrade the openjdk from repository or this need separate RPM to upgrade

current java version is below -

java -version java version "1.8.0_231" Java(TM) SE Runtime Environment (build 8.0.6.0 - pxa6480-201*_01(S**)) IBM J9 VM (build 2.9, JRE 1.8.0 Linux amd64-64-Bit Compressed References 2*****_4**** (JIT enabled, AOT enabled) OpenJ9 - f0b6be7 OMR - 18d8f94 IBM - 233dfb5)

1 + 5

linux

vulnerabilities

rhel7

Michael Hampton

12/27/22, 6:00 PM

The directions were perfectly clear. Why do you question them?

Newlinux-men

12/27/22, 6:11 PM

Thanks for reply - The Reason is DB folks are saying it should be patch by OS admin but I think there is no patch available in redhat to patch this but I am not so sure . If package needs to be download and upgrade and then I can say its not my scope

Michael Hampton

12/27/22, 6:12 PM

It doesn't say anything about Red Hat! It says IBM. This is not a Red Hat vulnerability.

joeqwerty

12/27/22, 6:44 PM

How to patch and who should patch are different questions.

Greg Askew

12/27/22, 6:57 PM

The finding is for Java 7, but the Java version you show is version 8. https://www.ibm.com/support/pages/java-sdk-downloads-version-80

Score:0

Server

Lutz Willek

12/29/22, 2:59 PM

I guess a kind of SAST scanning has been introduced lately, and you are the administrator which owns the server. The finding indicates that most likely more than one java version is installed on the server, as the standard version installed is for java 8, but the scan result is for java 7.

Either ask for more details (as file locations) from the scan, or scan by yourself for other java files.

It is possible that a certain application has been installed on the server, which brings its own version of Java embedded inside the installation.

Another possibility is that the scan is incorrect - I know SAST scanners that are really bad and detect false or false positive.

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to fix these vulnerability "" (CVE-2020-2781) ** Upgrade IBM Java to version 7.0.10.65 "" in rhel 7 server

TH: วิธีแก้ไขช่องโหว่เหล่านี้ "" (CVE-2020-2781) ** อัปเกรด IBM Java เป็นเวอร์ชัน 7.0.10.65 "" ในเซิร์ฟเวอร์ rhel 7

RO: Cum să remediați aceste vulnerabilități „” (CVE-2020-2781) ** Actualizați IBM Java la versiunea 7.0.10.65 „” pe serverul rhel 7

RU: Как исправить эту уязвимость "" (CVE-2020-2781) ** Обновите IBM Java до версии 7.0.10.65 "" на сервере rhel 7

VI: Cách khắc phục các lỗ hổng này "" (CVE-2020-2781) ** Nâng cấp IBM Java lên phiên bản 7.0.10.65 "" trong máy chủ rhel 7

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.