{"id":"SUSE-SU-2026:0389-1","summary":"Security update for java-1_8_0-openj9","details":"This update for java-1_8_0-openj9 fixes the following issues:\n\n- CVE-2026-21925: Fixed a vulnerability in the Oracle Java SE component RMI. (bsc#1257034)\n- CVE-2026-21932: Fixed a vulnerability in the Oracle Java SE component AWT and JavaFX. (bsc#1257036)\n- CVE-2026-21933: Fixed a vulnerability in the Oracle Java SE component Networking. (bsc#1257037)\n- CVE-2026-21945: Fixed a vulnerability in the Oracle Java SE component Security. (bsc#1257038)\n","modified":"2026-02-07T14:00:13.408844Z","published":"2026-02-05T14:22:20Z","related":["CVE-2026-21925","CVE-2026-21932","CVE-2026-21933","CVE-2026-21945"],"upstream":["CVE-2026-21925","CVE-2026-21932","CVE-2026-21933","CVE-2026-21945"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260389-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1257034"},{"type":"REPORT","url":"https://bugzilla.suse.com/1257036"},{"type":"REPORT","url":"https://bugzilla.suse.com/1257037"},{"type":"REPORT","url":"https://bugzilla.suse.com/1257038"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-21925"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-21932"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-21933"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-21945"}],"affected":[{"package":{"name":"java-1_8_0-openj9","ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP7","purl":"pkg:rpm/suse/java-1_8_0-openj9&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.8.0.482-150200.3.63.1"}]}],"ecosystem_specific":{"binaries":[{"java-1_8_0-openj9-src":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-accessibility":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-headless":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-demo":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-devel":"1.8.0.482-150200.3.63.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0389-1.json"}},{"package":{"name":"java-1_8_0-openj9","ecosystem":"openSUSE:Leap 15.6","purl":"pkg:rpm/opensuse/java-1_8_0-openj9&distro=openSUSE%20Leap%2015.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.8.0.482-150200.3.63.1"}]}],"ecosystem_specific":{"binaries":[{"java-1_8_0-openj9-src":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-accessibility":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-headless":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-javadoc":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-demo":"1.8.0.482-150200.3.63.1","java-1_8_0-openj9-devel":"1.8.0.482-150200.3.63.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0389-1.json"}}],"schema_version":"1.7.3"}