[CLSA-2025:1752246531] java-11-openjdk: Fix of 13 CVEs
Type:
security
Severity:
Important
Release date:
2025-07-11 15:08:55 UTC
Description:
- Upgrade to openjdk-11.0.27+6. The following CVEs were fixed: - CVE-2025-30698: fix buffered image handling to avoid unauthorized access to accessible data - CVE-2025-30691: improve compiler transformations to avoid unauthorized access to accessible data - CVE-2024-21144: invalid header validation leads to Pack200 excessive loading time - CVE-2024-21147: out-of-bounds array index in range check elimination - CVE-2024-21138: infinite loop vunlerability in SymbolTable - CVE-2024-21131: UTF8 size overflow - CVE-2024-21235: incorrect range check because of integer conversion error in LoopNode - CVE-2024-21140: int overflow/underflow in range check elimination - CVE-2024-21217: out-of-memory because of unbounded allocation in MessageFormat - CVE-2024-21210: integer overflow in array indexing in SuperWord - CVE-2024-21145: out-of-bounds access in MaskFill - CVE-2024-21208: improper handling of maxHeaderSize in HTTP client - CVE-2025-21502: enhance array handling
Updated packages:
  • java-11-openjdk-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:ffcf1314504722704f8083c5c0a39fd3e4a668cbfd8d686511a1c980dbf2a913
  • java-11-openjdk-demo-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:2095cc6db48a3ada5c2502e261e09386b707e55c3c679d7777de7370912963aa
  • java-11-openjdk-devel-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:a43ec95ca68c77c04ced5fb6698fd9f1ebf353a82ca477989c99402e0445ea03
  • java-11-openjdk-headless-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:5665e0d7fad6bf5d4a1b6c323d125f75393d24e600e924c0909485503d30dcd3
  • java-11-openjdk-javadoc-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:0ae0346058a3554d80a7334abd8f6ef0e145cb15c809775f8553eeecdef8bc25
  • java-11-openjdk-javadoc-zip-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:a8d4bd2ddb793d33fc75907560c4f4ca929d09b6f9c764c81f17e343aafbc6f0
  • java-11-openjdk-jmods-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:f585d2e63b2e8a78b60375bdaf641c5a6a4d57d5afd75f98ed5fecaaa7ece71c
  • java-11-openjdk-src-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:302522a09e196e78d131f788e43cb6df72fc76ab66cbb7fa315defbc2304a547
  • java-11-openjdk-static-libs-11.0.27.0.6-1.el9.tuxcare.els1.x86_64.rpm
    sha:f5b5aa35bc51d119a57d32ee280ea545c8d63c6cecfd865f88538ce492c7088a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.