openSUSE 15.6: 2025:0279-1 moderate: java-21-openjdk array handling issue

suse

January 29, 2025

* bsc#1236278 Cross-References: * CVE-2025-21502

Summary

## This update for java-21-openjdk fixes the following issues: Upgrade to upstream tag jdk-21.0.6+7 (January 2025 CPU) Security fixes: * CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278) Other changes: * JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows * JDK-8028127: Regtest java/security/Security/SynchronizedAccess.java is incorrect * JDK-8195675: Call to insertText with single character from custom Input Method ignored * JDK-8207908: JMXStatusTest.java fails assertion intermittently * JDK-8225220: When the Tab Policy is checked,the scroll button direction displayed incorrectly. * JDK-8240343: JDI stopListening/stoplis001 "FAILED: listening is successfully stopped without starting listening"

Topics Covered

security advisory moderate severity software advisory CVE reference java update openSUSE array handling

References

* bsc#1236278

Cross-

* CVE-2025-21502

CVSS scores:

* CVE-2025-21502 ( SUSE ): 6.3

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

* CVE-2025-21502 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

* CVE-2025-21502 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected Products:

* Basesystem Module 15-SP6

* openSUSE Leap 15.6

* SUSE Linux Enterprise Desktop 15 SP6

* SUSE Linux Enterprise Real Time 15 SP6

* SUSE Linux Enterprise Server 15 SP6

* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves one vulnerability can now be installed.

* https://www.suse.com/security/cve/CVE-2025-21502.html

* https://bugzilla.suse.com/show_bug.cgi?id=1236278

Announcement ID: SUSE-SU-2025:0279-1

Release Date: 2025-01-28T23:47:05Z

Rating: moderate

Topics Covered

security advisory moderate severity software advisory CVE reference java update openSUSE array handling

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE 15.6: 2025:0279-1 moderate: java-21-openjdk array handling issue

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE 15.6: 2025:0279-1 moderate: java-21-openjdk array handling issue

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!