From andrew.gross at oracle.com Tue Apr 15 21:32:39 2025 From: andrew.gross at oracle.com (Andrew H. Gross) Date: Tue, 15 Apr 2025 14:32:39 -0700 Subject: OpenJDK Vulnerability Advisory: 2025/04/15 Message-ID: <1c9db6d4-b298-4b4c-bddc-36fe799c5c2e@oracle.com> OpenJDK Vulnerability Advisory: 2025/04/15 vuln-report at openjdk.org https://openjdk.org/groups/vulnerability/advisories Releases affected: 8, 11, 17, 21, and 24 OpenJDK CVEs: ??? CVE-2025-21587? CVE-2025-30691? CVE-2025-30698 OpenJFX CVEs: ??? CVE-2024-47606? CVE-2024-54534 Please note that defense-in-depth issues are not assigned CVEs. These issues have been addressed, as applicable, in the following releases: ? 8u452, 11.0.27, 17.0.15, 21.0.7, and 24.0.1 We recommend that you upgrade to these new releases as soon as possible. For more detail about this advisory, please see: ? https://openjdk.org/groups/vulnerability/advisories/2025-04-15 -------------- next part -------------- A non-text attachment was scrubbed... Name: OpenPGP_0x27F209491C0FE9C1.asc Type: application/pgp-keys Size: 4134 bytes Desc: OpenPGP public key URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: OpenPGP_signature.asc Type: application/pgp-signature Size: 840 bytes Desc: OpenPGP digital signature URL: