[Git][security-tracker-team/security-tracker][master] Add commit references for OpenJDK issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Apr 21 15:24:54 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ff1f9c0f by Salvatore Bonaccorso at 2025-04-21T16:24:27+02:00
Add commit references for OpenJDK issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2195,6 +2195,10 @@ CVE-2025-30698 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE: https://github.com/openjdk/jdk8u/commit/68d10daabaf9c939a5d2e665994c6d348f38cfd5 (jdk8u452-b08)
+ NOTE: https://github.com/openjdk/jdk11u/commit/ea1389c971827876134a6d1d3ab2934681e9f3d6 (jdk-11.0.27-ga)
+ NOTE: https://github.com/openjdk/jdk17u/commit/0a89eb2588334226531e8e25ac340eabbc00bd6d (jdk-17.0.15-ga)
+ NOTE: https://github.com/openjdk/jdk21u/commit/3048e287d8ea7d5e0d19d9188eb4212801ebf2a2 (jdk-21.0.7-ga)
CVE-2025-30697 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2025-30696 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -2213,6 +2217,10 @@ CVE-2025-30691 (Vulnerability in Oracle Java SE (component: Compiler). Supporte
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE: https://github.com/openjdk/jdk8u/commit/949c6ffc54efaa92d6559a3e7897432b95e99253 (jdk8u452-b08)
+ NOTE: https://github.com/openjdk/jdk11u/commit/2b70822671cf5f9b37956949421e7c77da082c8e (jdk-11.0.27-ga)
+ NOTE: https://github.com/openjdk/jdk17u/commit/5b0a5f436fb9817d679f64302b37543bf160d43d (jdk-17.0.15-ga)
+ NOTE: https://github.com/openjdk/jdk21u/commit/11067d7e975ce71bedbfdd314519ec9ff689a7e7 (jdk-21.0.7-ga)
CVE-2025-30690 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
NOT-FOR-US: Oracle
CVE-2025-30689 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -2353,6 +2361,10 @@ CVE-2025-21587 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE: https://github.com/openjdk/jdk8u/commit/3cdd3081565d890801a27a1f9ac8bc53e5711ce6 (jdk8u452-b08)
+ NOTE: https://github.com/openjdk/jdk11u/commit/2adb01e8c5fbcc3dfa9f82df3deccb3a1705bf13 (jdk-11.0.27-ga)
+ NOTE: https://github.com/openjdk/jdk17u/commit/73aa304234f2ec17abbb640b7f2d0503cf1bfc91 (jdk-17.0.15-ga)
+ NOTE: https://github.com/openjdk/jdk21u/commit/d5c94adf69ba20f5652453729620c4f1c8e4860e (jdk-21.0.7-ga)
CVE-2025-21586 (Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle ...)
NOT-FOR-US: Oracle
CVE-2025-21585 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1f9c0f4bbf9bccb6753c49ea7f6487a434d888
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1f9c0f4bbf9bccb6753c49ea7f6487a434d888
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250421/b2dae097/attachment.htm>
More information about the debian-security-tracker-commits
mailing list