[CLSA-2025:1767028399] java-11-openjdk: Fix of 5 CVEs
Type:
security
Severity:
Important
Release date:
2025-12-29 17:13:22 UTC
Description:
- Upgrade to openjdk-11.0.29+7 (GA). The following CVEs were fixed: - CVE-2023-48161: fix buffer overflow vulnerability - CVE-2024-21147: RangeCheckElimination array index overflow - CVE-2025-21587: fix TLS connection support to avoid unauthorized access to critical data - CVE-2025-53057: enhance certificate handling to prevent unauthorized creation - CVE-2025-53066: enhance Path Factories to prevent unauthorized access
Updated packages:
  • java-11-openjdk-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:400c5d00d9af6cdb9ec041b282be4813bc75fae8bcbe024f6f3d200726551144
  • java-11-openjdk-demo-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:a32437769ff87d25e91e4df2a648165e6643524d370a1cd036e2b79ff9f14b31
  • java-11-openjdk-devel-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:3f408ef299ef2cf3d8625f3d7072967889f02c70acbe1c93e76fcb34bda4c65a
  • java-11-openjdk-headless-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:4aab723144a169fe7d6422f7939032fc4f7e85387f09b5784ccfee047f9c84b7
  • java-11-openjdk-javadoc-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:7953db3f753f0b5b812a936c77b68df824f0189a82ca29c7d218d5a6808f5be1
  • java-11-openjdk-javadoc-zip-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:87a3be34d49778ee6b08d40015d44d5e94af5fd2f165c90fc2009435ab1d4d3c
  • java-11-openjdk-jmods-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:d7466e45cb6e81bb385517a3d9d09bd1ef6f21a5240d848a881d51d74d2690f8
  • java-11-openjdk-src-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:cc007f94d9cb54044046c2e374fa23850090e676415af905b44222c9678dbb32
  • java-11-openjdk-static-libs-11.0.29.0.7-1.el8.tuxcare.els1.x86_64.rpm
    sha:630019bd11b560308c234da70bd995a2642f985bd76a82f0291a1f36adc7be78
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.