Ubuntu 25.04: OpenJDK 17 Critical Security Fixes USN-7672-1

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 Summary: Several security issues were fixed in CRaC JDK 17. Software Description: - openjdk-17-crac: Open Source Java implementation with Coordinated Restore at Checkpoints Details: It was discovered that the 2D component of CRaC JDK 17 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2025-30749, CVE-2025-50106) VMashroor Hasan Bhuiyan discovered that the JSSE component of CRaC JDK 17 did not properly manage TLS 1.3 handshakes under certain circumstances. An attacker could possibly use this issue to obtain sensitive information. (CVE-2025-30754) Martin van Wingerden and Violeta Georgieva of Broadcom discovered that the Networking component of CRaC JDK 17 did not properly manage network connections under certain circumstances. An attacker could possibly use this issue to obtain ...