From 0a8e002cd479e173ad8d0ad61475bd7eccc443b2 Mon Sep 17 00:00:00 2001
From: alixthegreat <hiscockalix@gmail.com>
Date: Fri, 12 Dec 2025 14:39:19 +0000
Subject: [PATCH] Update openjdk installation and update debian

---
 .../unix/http/lucee_rce/manifests/install.pp  | 21 +++++++++++++++++--
 .../lucee_rce/templates/lucee.service.erb     |  1 +
 scenarios/ctf/disastrous_development.xml      |  2 +-
 3 files changed, 21 insertions(+), 3 deletions(-)

diff --git a/modules/vulnerabilities/unix/http/lucee_rce/manifests/install.pp b/modules/vulnerabilities/unix/http/lucee_rce/manifests/install.pp
index d9116203c..4a147d6d8 100644
--- a/modules/vulnerabilities/unix/http/lucee_rce/manifests/install.pp
+++ b/modules/vulnerabilities/unix/http/lucee_rce/manifests/install.pp
@@ -13,8 +13,6 @@
   $user = $secgen_parameters['unix_username'][0]
   $user_home = "/home/${user}"
 
-  ensure_packages(['openjdk-11-jdk'], { ensure => 'installed'})
-
   $splits.each |String $split| {
     file { "/tmp/${split}":
       ensure => file,
@@ -28,6 +26,25 @@
     home       => $user_home,
     managehome => true,
   }
+  exec { 'download-jdk11':
+    cwd     => '/tmp',
+    command => 'wget -O jdk11.tar.gz https://download.java.net/openjdk/jdk11.0.0.2/ri/openjdk-11.0.0.2_linux-x64.tar.gz',
+    creates => '/tmp/jdk11.tar.gz',
+    timeout => 300,
+  }
+  -> exec { 'extract-jdk11':
+    cwd     => '/tmp',
+    command => 'tar -xzf jdk11.tar.gz',
+    creates => '/tmp/jdk-11.0.0.2',
+  }
+  -> file { '/usr/lib/jvm':
+    ensure => directory,
+  }
+  -> exec { 'install-jdk11':
+    cwd     => '/tmp',
+    command => 'mv jdk-11.0.0.2 /usr/lib/jvm/java-11-openjdk',
+    creates => '/usr/lib/jvm/java-11-openjdk',
+  }
 
   exec { 'rebuild-archive':
     cwd     => '/tmp/',
diff --git a/modules/vulnerabilities/unix/http/lucee_rce/templates/lucee.service.erb b/modules/vulnerabilities/unix/http/lucee_rce/templates/lucee.service.erb
index eebe87467..b9a7cf12c 100644
--- a/modules/vulnerabilities/unix/http/lucee_rce/templates/lucee.service.erb
+++ b/modules/vulnerabilities/unix/http/lucee_rce/templates/lucee.service.erb
@@ -3,6 +3,7 @@ Description=Lucee
 [Service]
 Type=forking
 User=<%= @user %>
+Environment="JAVA_HOME=/usr/lib/jvm/java-11-openjdk"
 ExecStart=/usr/local/src/bin/startup.sh
 ExecStop=/usr/local/src/bin/shutdown.sh
 TimeoutStopSec=5
diff --git a/scenarios/ctf/disastrous_development.xml b/scenarios/ctf/disastrous_development.xml
index ee1c020aa..b72b66da7 100644
--- a/scenarios/ctf/disastrous_development.xml
+++ b/scenarios/ctf/disastrous_development.xml
@@ -87,7 +87,7 @@
 
     <system>
         <system_name>lucee_web</system_name>
-        <base distro="Debian 10" type="desktop" name="KDE" />
+        <base distro="Debian 12" type="desktop" name="KDE" />
 
         <vulnerability module_path=".*/lucee_rce">
             <input into="strings_to_leak">