ALSA-2025:10873
- Source
- https://errata.almalinux.org/9/ALSA-2025-10873.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10873.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/ALSA-2025:10873
- Related
- Published
- 2025-07-16T00:00:00Z
- Modified
- 2025-07-30T13:13:20Z
- Summary
- Important: java-21-openjdk security update
- Details
-
The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit.
Security Fix(es):
- JDK: Better Glyph drawing (CVE-2025-30749)
- JDK: Enhance TLS protocol support (CVE-2025-30754)
- JDK: Improve HTTP client header handling (CVE-2025-50059)
- JDK: Better Glyph drawing redux (CVE-2025-50106)
Bug Fix(es):
- In AlmaLinuxand AlmaLinux systems, the default graphical display system is Wayland. The use of Wayland in these systems causes a failure in the traditional X11 method that java.awt.Robot uses to take a screen capture, producing a blank image. With this update, the RPM now recommends installing the PipeWire package, which the JDK can use to take screen captures in Wayland systems (AlmaLinux-102683, AlmaLinux-102684, AlmaLinux-102685)
- On NUMA systems, the operating system can choose to migrate a task from one NUMA node to another. In the G1 garbage collector, G1AllocRegion objects are associated with NUMA nodes. The G1Allocator code assumes that obtaining the G1AllocRegion object for the current thread is sufficient, but OS scheduling can lead to arbitrary changes in the NUMA-to-thread association. This can cause crashes when the G1AllocRegion being used changes mid-operation. This update resolves this issue by always using the same NUMA node and associated G1AllocRegion object throughout an operation. (AlmaLinux-90307, AlmaLinux-90308, AlmaLinux-90311)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2025:10873
- https://access.redhat.com/security/cve/CVE-2025-30749
- https://access.redhat.com/security/cve/CVE-2025-30754
- https://access.redhat.com/security/cve/CVE-2025-50059
- https://access.redhat.com/security/cve/CVE-2025-50106
- https://errata.almalinux.org/9/ALSA-2025-10873.html
Affected packages
AlmaLinux:9 / java-21-openjdk
Package
- Name
- java-21-openjdk
- Purl
- pkg:rpm/almalinux/java-21-openjdk
AlmaLinux:9 / java-21-openjdk-demo
Package
- Name
- java-21-openjdk-demo
- Purl
- pkg:rpm/almalinux/java-21-openjdk-demo
AlmaLinux:9 / java-21-openjdk-demo-fastdebug
Package
- Name
- java-21-openjdk-demo-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-demo-fastdebug
AlmaLinux:9 / java-21-openjdk-demo-slowdebug
Package
- Name
- java-21-openjdk-demo-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-demo-slowdebug
AlmaLinux:9 / java-21-openjdk-devel
Package
- Name
- java-21-openjdk-devel
- Purl
- pkg:rpm/almalinux/java-21-openjdk-devel
AlmaLinux:9 / java-21-openjdk-devel-fastdebug
Package
- Name
- java-21-openjdk-devel-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-devel-fastdebug
AlmaLinux:9 / java-21-openjdk-devel-slowdebug
Package
- Name
- java-21-openjdk-devel-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-devel-slowdebug
AlmaLinux:9 / java-21-openjdk-fastdebug
Package
- Name
- java-21-openjdk-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-fastdebug
AlmaLinux:9 / java-21-openjdk-headless
Package
- Name
- java-21-openjdk-headless
- Purl
- pkg:rpm/almalinux/java-21-openjdk-headless
AlmaLinux:9 / java-21-openjdk-headless-fastdebug
Package
- Name
- java-21-openjdk-headless-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-headless-fastdebug
AlmaLinux:9 / java-21-openjdk-headless-slowdebug
Package
- Name
- java-21-openjdk-headless-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-headless-slowdebug
AlmaLinux:9 / java-21-openjdk-javadoc
Package
- Name
- java-21-openjdk-javadoc
- Purl
- pkg:rpm/almalinux/java-21-openjdk-javadoc
AlmaLinux:9 / java-21-openjdk-javadoc-zip
Package
- Name
- java-21-openjdk-javadoc-zip
- Purl
- pkg:rpm/almalinux/java-21-openjdk-javadoc-zip
AlmaLinux:9 / java-21-openjdk-jmods
Package
- Name
- java-21-openjdk-jmods
- Purl
- pkg:rpm/almalinux/java-21-openjdk-jmods
AlmaLinux:9 / java-21-openjdk-jmods-fastdebug
Package
- Name
- java-21-openjdk-jmods-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-jmods-fastdebug
AlmaLinux:9 / java-21-openjdk-jmods-slowdebug
Package
- Name
- java-21-openjdk-jmods-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-jmods-slowdebug
AlmaLinux:9 / java-21-openjdk-slowdebug
Package
- Name
- java-21-openjdk-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-slowdebug
AlmaLinux:9 / java-21-openjdk-src
Package
- Name
- java-21-openjdk-src
- Purl
- pkg:rpm/almalinux/java-21-openjdk-src
AlmaLinux:9 / java-21-openjdk-src-fastdebug
Package
- Name
- java-21-openjdk-src-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-src-fastdebug
AlmaLinux:9 / java-21-openjdk-src-slowdebug
Package
- Name
- java-21-openjdk-src-slowdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-src-slowdebug
AlmaLinux:9 / java-21-openjdk-static-libs
Package
- Name
- java-21-openjdk-static-libs
- Purl
- pkg:rpm/almalinux/java-21-openjdk-static-libs
AlmaLinux:9 / java-21-openjdk-static-libs-fastdebug
Package
- Name
- java-21-openjdk-static-libs-fastdebug
- Purl
- pkg:rpm/almalinux/java-21-openjdk-static-libs-fastdebug