{"id":"CLSA-2025-1752246531","summary":"java-11-openjdk: Fix of 13 CVEs","details":"- Upgrade to openjdk-11.0.27+6. The following CVEs were fixed:\n- CVE-2025-30698: fix buffered image handling to avoid unauthorized\n  access to accessible data\n- CVE-2025-30691: improve compiler transformations to avoid unauthorized\n  access to accessible data\n- CVE-2024-21144: invalid header validation leads to Pack200 excessive\n  loading time\n- CVE-2024-21147: out-of-bounds array index in range check elimination\n- CVE-2024-21138: infinite loop vunlerability in SymbolTable\n- CVE-2024-21131: UTF8 size overflow\n- CVE-2024-21235: incorrect range check because of integer conversion\n  error in LoopNode\n- CVE-2024-21140: int overflow/underflow in range check elimination\n- CVE-2024-21217: out-of-memory because of unbounded allocation in\n  MessageFormat\n- CVE-2024-21210: integer overflow in array indexing in SuperWord\n- CVE-2024-21145: out-of-bounds access in MaskFill\n- CVE-2024-21208: improper handling of maxHeaderSize in HTTP client\n- CVE-2025-21502: enhance array handling","modified":"2026-05-29T01:35:51.550349966Z","published":"2025-07-11T15:08:55Z","upstream":["CVE-2024-21131","CVE-2024-21138","CVE-2024-21140","CVE-2024-21144","CVE-2024-21145","CVE-2024-21147","CVE-2024-21208","CVE-2024-21210","CVE-2024-21217","CVE-2024-21235","CVE-2025-21502","CVE-2025-30691","CVE-2025-30698"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1752246531.html"}],"schema_version":"1.7.5"}