The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3793 advisory.

    - -------------------------------------------------------------------------     Debian LTS Advisory DLA-3793-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/               Emilio Pozuelo Monfort     April 22, 2024                                https://wiki.debian.org/LTS
    - -------------------------------------------------------------------------

    Package        : openjdk-11     Version        : 11.0.23+9-1~deb10u1     CVE ID         : CVE-2024-21011 CVE-2024-21012 CVE-2024-21068 CVE-2024-21085                      CVE-2024-21094

    Several vulnerabilities have been discovered in the OpenJDK Java runtime,     which may result in denial of service or information disclosure.

    For Debian 10 buster, these problems have been fixed in version     11.0.23+9-1~deb10u1.

    We recommend that you upgrade your openjdk-11 packages.

    For the detailed security status of openjdk-11 please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/openjdk-11

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian dla-3793 : openjdk-11-dbg - security update

low Nessus Plugin ID 193696

Version 1.1

Version 1.0

Version 1.1 Jan 22, 2025, 5:44 PM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Plugin metadata Plugin Feed: 202501221744
Version 1.0 Apr 23, 2024, 2:11 PM New Plugin Feed: 202404231411