Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0a9d4d03 by Salvatore Bonaccorso at 2025-04-22T17:30:45+02:00
Add Debian bug references for openjdk issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2313,10 +2313,10 @@ CVE-2025-30700 (Vulnerability in the Oracle Solaris
product of Oracle Systems (c
CVE-2025-30699 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.42-1 (bug #1103385)
CVE-2025-30698 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
- - openjdk-8 <unfixed>
- - openjdk-11 <unfixed>
- - openjdk-17 <unfixed>
- - openjdk-21 <unfixed>
+ - openjdk-8 <unfixed> (bug #1103900)
+ - openjdk-11 <unfixed> (bug #1103899)
+ - openjdk-17 <unfixed> (bug #1103898)
+ - openjdk-21 <unfixed> (bug #1103897)
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
NOTE:
https://github.com/openjdk/jdk8u/commit/68d10daabaf9c939a5d2e665994c6d348f38cfd5
(jdk8u452-b08)
NOTE:
https://github.com/openjdk/jdk11u/commit/ea1389c971827876134a6d1d3ab2934681e9f3d6
(jdk-11.0.27-ga)
@@ -2335,10 +2335,10 @@ CVE-2025-30693 (Vulnerability in the MySQL Server
product of Oracle MySQL (compo
CVE-2025-30692 (Vulnerability in the Oracle iSupplier Portal product of Oracle
E-Busin ...)
NOT-FOR-US: Oracle
CVE-2025-30691 (Vulnerability in Oracle Java SE (component: Compiler).
Supported vers ...)
- - openjdk-8 <unfixed>
- - openjdk-11 <unfixed>
- - openjdk-17 <unfixed>
- - openjdk-21 <unfixed>
+ - openjdk-8 <unfixed> (bug #1103900)
+ - openjdk-11 <unfixed> (bug #1103899)
+ - openjdk-17 <unfixed> (bug #1103898)
+ - openjdk-21 <unfixed> (bug #1103897)
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
NOTE:
https://github.com/openjdk/jdk8u/commit/949c6ffc54efaa92d6559a3e7897432b95e99253
(jdk8u452-b08)
NOTE:
https://github.com/openjdk/jdk11u/commit/2b70822671cf5f9b37956949421e7c77da082c8e
(jdk-11.0.27-ga)
@@ -2479,10 +2479,10 @@ CVE-2025-22263 (Improper Neutralization of Input During
Web Page Generation ('Cr
CVE-2025-21588 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <not-affected> (Only affects 8.4 and later)
CVE-2025-21587 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
- - openjdk-8 <unfixed>
- - openjdk-11 <unfixed>
- - openjdk-17 <unfixed>
- - openjdk-21 <unfixed>
+ - openjdk-8 <unfixed> (bug #1103900)
+ - openjdk-11 <unfixed> (bug #1103899)
+ - openjdk-17 <unfixed> (bug #1103898)
+ - openjdk-21 <unfixed> (bug #1103897)
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
NOTE:
https://github.com/openjdk/jdk8u/commit/3cdd3081565d890801a27a1f9ac8bc53e5711ce6
(jdk8u452-b08)
NOTE:
https://github.com/openjdk/jdk11u/commit/2adb01e8c5fbcc3dfa9f82df3deccb3a1705bf13
(jdk-11.0.27-ga)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a9d4d03e75234d950872c001fb910cf90e65a54
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a9d4d03e75234d950872c001fb910cf90e65a54
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
