INFSA-2025:18824: java-21-openjdk security update
Information about definition
Identificator: INFSA-2025:18824
Type: security
Release date: 2025-10-31 14:43:54 UTC
Information about package
The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit.
Vulnerabilities description
- CVE-2025-53057
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE related to the Security component could allow a remote attacker to cause no confidentiality impact, high integrity impact, and no availability impact.
- CVE-2025-53066
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE related to the JAXP component could allow a remote attacker to cause high confidentiality impact, no integrity impact, and no availability impact.
- CVE-2025-61748
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE related to the Libraries component could allow a remote attacker to cause high confidentiality impact, no integrity impact, and no availability impact.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-53057
|
no information | 5.9 | no information |
|
NIST — CVE-2025-53066
|
no information | 4.8 | no information |
|
NIST — CVE-2025-61748
|
no information | 3.7 | no information |
Updated packages
Preparing to download...