|
|
Subscribe / Log in / New account

AlmaLinux alert ALSA-2025:10873 (java-21-openjdk)



From:
              AlmaLinux Errata Notifications via Announce <announce@lists.almalinux.org>


To:
              announce@lists.almalinux.org


Subject:
              [Announce] [Security Advisory] ALSA-2025:10873: java-21-openjdk security update (Important)


Date:
              Wed, 30 Jul 2025 17:03:43 +0000


Message-ID:
              <010001985c4a350c-ef523c34-753a-4d6c-85e4-da67e481a72c-000000@email.amazonses.com>


Archive-link:
              Article


Hi,

You are receiving an AlmaLinux Security update email because you subscribed to receive errata
notifications from AlmaLinux.

AlmaLinux: 9
Type: Security
Severity: Important
Release date: 2025-07-30

Summary:

The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java
Software Development Kit.  

Security Fix(es):  

  * JDK: Better Glyph drawing (CVE-2025-30749)
  * JDK: Enhance TLS protocol support (CVE-2025-30754)
  * JDK: Improve HTTP client header handling (CVE-2025-50059)
  * JDK: Better Glyph drawing redux (CVE-2025-50106)


Bug Fix(es):  

  * In AlmaLinuxand AlmaLinux systems, the default graphical display system is Wayland. The use of
Wayland in these systems causes a failure in the traditional X11 method that java.awt.Robot uses to
take a screen capture, producing a blank image. With this update, the RPM now recommends installing
the PipeWire package, which the JDK can use to take screen captures in Wayland systems
(AlmaLinux-102683, AlmaLinux-102684, AlmaLinux-102685)
  * On NUMA systems, the operating system can choose to migrate a task from one NUMA node to
another. In the G1 garbage collector, G1AllocRegion objects are associated with NUMA nodes. The
G1Allocator code assumes that obtaining the G1AllocRegion object for the current thread is
sufficient, but OS scheduling can lead to arbitrary changes in the NUMA-to-thread association. This
can cause crashes when the G1AllocRegion being used changes mid-operation. This update resolves
this issue by always using the same NUMA node and associated G1AllocRegion object throughout an
operation. (AlmaLinux-90307, AlmaLinux-90308, AlmaLinux-90311)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments,
and other related information, refer to the CVE page(s) listed in the References section.


Full details, updated packages, references, and other related information:
https://errata.almalinux.org/9/ALSA-2025-10873.html

This message is automatically generated, please don’t reply. For further questions, please, contact
us via the AlmaLinux community chat: https://chat.almalinux.org/.
Want to change your notification settings? Sign in and manage mailing lists on
https://lists.almalinux.org.

Kind regards,
AlmaLinux Team
_______________________________________________
Announce mailing list -- announce@lists.almalinux.org
To unsubscribe send an email to announce-leave@lists.almalinux.org
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds