SUSE-SU-2025:0235-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-20250235-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:0235-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:0235-1
Related
Published
2025-01-24T16:34:30Z
Modified
2025-01-24T16:34:30Z
Summary
Security update for java-11-openjdk
Details

This update for java-11-openjdk fixes the following issues:

Upgrade to upstream tag jdk-11.0.26+4 (January 2025 CPU)

Security fixes:

  • CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278)

Other changes:

  • JDK-8224624: Inefficiencies in CodeStrings::add_comment cause - timeouts
  • JDK-8225045: javax/swing/JInternalFrame/8146321//JInternalFrameIconTest.java fails on linux-x64
  • JDK-8232367: Update Reactive Streams to 1.0.3 -- tests only
  • JDK-8247706: Unintentional use of new Date(year...) with absolute year
  • JDK-8299254: Support dealing with standard assert macro
  • JDK-8303920: Avoid calling out to python in DataDescriptorSignatureMissing test
  • JDK-8315936: Parallelize gc/stress/TestStressG1Humongous.java test
  • JDK-8316193: jdk/jfr/event/oldobject/TestListenerLeak.java java.lang.Exception: Could not find leak
  • JDK-8328300: Convert PrintDialogsTest.java from Applet to main program
  • JDK-8328642: Convert applet test MouseDraggedOutCauseScrollingTest.html to main
  • JDK-8334332: TestIOException.java fails if run by root
  • JDK-8335428: Enhanced Building of Processes
  • JDK-8335801: [11u] Backport of 8210988 to 11u removes gcc warnings
  • JDK-8335912, JDK-8337499: Add an operation mode to the jar command when extracting to not overwriting existing files
  • JDK-8336564: Enhance mask blit functionality redux
  • JDK-8338402: GHA: some of bundles may not get removed
  • JDK-8339082: Bump update version for OpenJDK: jdk-11.0.26
  • JDK-8339180: Enhanced Building of Processes: Follow-on Issue
  • JDK-8339470: [17u] More defensive fix for 8163921
  • JDK-8339637: (tz) Update Timezone Data to 2024b
  • JDK-8339644: Improve parsing of Day/Month in tzdata rules
  • JDK-8339803: Acknowledge case insensitive unambiguous keywords in tzdata files
  • JDK-8340552: Harden TzdbZoneRulesCompiler against missing zone names
  • JDK-8340671: GHA: Bump macOS and Xcode versions to macos-12 and XCode 13.4.1
  • JDK-8340815: Add SECURITY.md file
  • JDK-8342426: [11u] javax/naming/module/RunBasic.java javac compile fails
  • JDK-8342629: [11u] Properly message out that shenandoah is disabled
  • JDK-8347483: [11u] Remove designator DEFAULTPROMOTEDVERSION_PRE=ea for release 11.0.26
References

Affected packages

SUSE:Linux Enterprise Server 12 SP5-LTSS / java-11-openjdk

Package

Name
java-11-openjdk
Purl
pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.26.0-3.84.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-11-openjdk-demo": "11.0.26.0-3.84.1",
            "java-11-openjdk": "11.0.26.0-3.84.1",
            "java-11-openjdk-devel": "11.0.26.0-3.84.1",
            "java-11-openjdk-headless": "11.0.26.0-3.84.1"
        }
    ]
}

SUSE:Linux Enterprise Server LTSS Extended Security 12 SP5 / java-11-openjdk

Package

Name
java-11-openjdk
Purl
pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.26.0-3.84.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-11-openjdk-demo": "11.0.26.0-3.84.1",
            "java-11-openjdk": "11.0.26.0-3.84.1",
            "java-11-openjdk-devel": "11.0.26.0-3.84.1",
            "java-11-openjdk-headless": "11.0.26.0-3.84.1"
        }
    ]
}