Overview

File _patchinfo of Package patchinfo.41466

<patchinfo incident="41466">
  <issue tracker="cve" id="2025-53057"/>
  <issue tracker="cve" id="2025-53066"/>
  <issue tracker="bnc" id="1252417">VUL-0: CVE-2025-53066: java-17-openjdk, java-21-openjdk: unauthenticated attacker can achive unauthorized access to critical data or complete access</issue>
  <issue tracker="bnc" id="1252414">VUL-0: CVE-2025-53057: java-17-openjdk, java-21-openjdk: unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data</issue>
  <packager>fstrba</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for java-1_8_0-openj9</summary>
  <description>This update for java-1_8_0-openj9 fixes the following issues:

Update to OpenJDK 8u472 build 08 with OpenJDK 0.56.0 virtual
machine (including Oracle October 2025 CPU changes):

- CVE-2025-53057: Fixed unauthenticated attacker achieving unauthorized access to critical data or complete access (bsc#1252414)
- CVE-2025-53066: Fixed unauthenticated attacker achieving unauthorized creation, deletion or modification access to critical data (bsc#1252417)
  </description>
</patchinfo>
openSUSE Build Service is sponsored by
Places