Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

openSUSE Leap 15.4: Java-17-OpenJDK Important Security Patch 2025:02667-1

opensuse
Calendar Grey August 4, 2025
Dist Opensuse Esm H88
This critical notice regarding python-3.9 highlights various vulnerabilities that improve safety for Arch Linux users.
An update that solves four vulnerabilities can now be installed.

Description

This update for java-17-openjdk fixes the following issues:

Upgrade to upstream tag jdk-17.0.16+8 (July 2025 CPU):

* CVE-2025-30749: several scenarios can lead to heap corruption (bsc#1246595)

* CVE-2025-30754: incomplete handshake may lead to weakening TLS protections

(bsc#1246598)

* CVE-2025-50059: Improve HTTP client header handling (bsc#1246575)

* CVE-2025-50106: Glyph out-of-memory access and crash (bsc#1246584)

Changelog:

+ JDK-4850101: Setting mnemonic to VK_F4 underlines the letter

S in a button.

+ JDK-5074006: Swing JOptionPane shows </html> tag as a string

after newline

+ JDK-6956385: URLConnection.getLastModified() leaks file

handles for jar:file and file: URLs

+ JDK-8024624: [TEST_BUG] [macosx] CTRL+RIGHT(LEFT) doesn't

move selection on next cell in JTable on Aqua L&F

+ JDK-8042134: JOptionPane bungles HTML messages

+ JDK-8051591: Test

...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory heap corruption important TLS OpenSUSE java-17-openjdk

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* SUSE Manager Proxy 4.3

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2667=1

* SUSE Manager Retail Branch Server 4.3

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-

Server-4.3-2025-2667=1

* SUSE Manager Server 4.3

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2667=1

* openSUSE Leap 15.4

zypper in -t patch SUSE-2025-2667=1

* openSUSE Leap 15.6

zypper in -t patch openSUSE-SLE-15.6-2025-2667=1

* Basesystem Module 15-SP6

zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2667=1

* Legacy Module 15-SP6

zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2025-2667=1

* Legacy Module 15-SP7

zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-2667=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4

zypper in -t patch...

Read the Full Advisory

Package List

* SUSE Manager Proxy 4.3 (x86_64)

* java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-17.0.16.0-150400.3.57.1

* java-17-openjdk-devel-17.0.16.0-150400.3.57.1

* java-17-openjdk-demo-17.0.16.0-150400.3.57.1

* java-17-openjdk-headless-17.0.16.0-150400.3.57.1

* java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1

* SUSE Manager Retail Branch Server 4.3 (x86_64)

* java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-17.0.16.0-150400.3.57.1

* java-17-openjdk-devel-17.0.16.0-150400.3.57.1

* java-17-openjdk-demo-17.0.16.0-150400.3.57.1

* java-17-openjdk-headless-17.0.16.0-150400.3.57.1

* java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1

* java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1

* SUSE Manager Server 4.3 (ppc64le s390x x86_64)

* java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1

*...

Read the Full Advisory

References

* bsc#1246575

* bsc#1246584

* bsc#1246595

* bsc#1246598

## References:

* https://www.suse.com/security/cve/CVE-2025-30749.html

* https://www.suse.com/security/cve/CVE-2025-30754.html

* https://www.suse.com/security/cve/CVE-2025-50059.html

* https://www.suse.com/security/cve/CVE-2025-50106.html

* https://bugzilla.suse.com/show_bug.cgi?id=1246575

* https://bugzilla.suse.com/show_bug.cgi?id=1246584

* https://bugzilla.suse.com/show_bug.cgi?id=1246595

* https://bugzilla.suse.com/show_bug.cgi?id=1246598

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:02667-1
Release Date: 2025-08-04T12:38:11Z
Affected Products: * Basesystem Module 15-SP6 * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3

Topics%20covered

Topics Covered

security advisory heap corruption important TLS OpenSUSE java-17-openjdk

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here