-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4173-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort May 20, 2025 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : openjdk-17 Version : 17.0.15+6-1~deb11u1 CVE ID : CVE-2025-21587 CVE-2025-30691 CVE-2025-30698 Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, information disclosure or bypass of sandbox restrictions. For Debian 11 bullseye, these problems have been fixed in version 17.0.15+6-1~deb11u1. We recommend that you upgrade your openjdk-17 packages. For the detailed security status of openjdk-17 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/openjdk-17 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmgsMuQACgkQnUbEiOQ2 gwKp1g/+MXrA5mqpmnL2ZhLRNhEhpvYLzD6tozkHo2Q0pDEG32b86oYyFt2pxG32 RT7EQoxaduw8GRbpssfiRObQqT+RCYHoqB95kTlx/JNx6X90Xo0++FCyW3SafszD wHBrLIw19oPssWAdlocSGs6sVjdHrAWbVbS8MjS0fiLOVZQd/GygaDf0uza+ItFT fJKc6Ax/P8PydOZauLYNOXWuH8ecit7tNMeADOqfZ2zFWXGqPITzIlnGuIriciOY /G4Lv7K9mZpQph3iCRg0FjM3NhP+MN4OLcQ0Pc19UwxNYnebRtxczMFoNYJrnQtQ ZsAOtVcYfSq8UZTCFPxb1yTkOHDRCoIqDgxvUC5YsIAGYtHzbtDEPbMV+LUYAZi3 A45PA6BJz+qvCIvFhaViPMi+/ESBSxmBlvr6pEb1jXgA5/DsP9VTFBuOAXNBCTqa KkXixL0a0NRL0k3NHJXvgzO4jkBIjsQLIetfUbWjCV27fZFeH2heKqGFnxJBrdJh nM79q6AEX4UNEVbz9lS4eU8lEnF5fX8DmjD06J0daFm8DJUVI4e3CFBvtn9wIuwI gTXdLJqRtsgCV1vCajQaMaNZsj2iuw4SQrNtCv9OZth2ACdDxIK6hC9jzg1KH5Lh /qsiHUOl4Q/+Tmk+DToKycpBDav3uvloLo+ba7l1S7fyGoB3UVk= =sF72 -----END PGP SIGNATURE-----
