[Git][security-tracker-team/security-tracker][master] CVE-2025-30761/openjdk-11 fixed in 11.0.28+6-1
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Tue Jul 22 08:39:57 BST 2025
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1dbf2293 by Emilio Pozuelo Monfort at 2025-07-22T09:39:38+02:00
CVE-2025-30761/openjdk-11 fixed in 11.0.28+6-1
It was not mentioned in the d/changelog entry due to a copy/paste
error from openjdk-17, which is not affected by CVE-2025-30761,
but it was fixed in 11.0.28+6:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2025-July/045612.html
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1558,7 +1558,7 @@ CVE-2025-53905 (Vim is an open source, command line text editor. Prior to versio
NOTE: https://github.com/vim/vim/security/advisories/GHSA-74v4-f3x9-ppvr
CVE-2025-30761 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- openjdk-8 <unfixed>
- - openjdk-11 <unfixed>
+ - openjdk-11 11.0.28+6-1
NOTE: https://www.openwall.com/lists/oss-security/2025/07/16/1
CVE-2025-7667 (The Restrict File Access plugin for WordPress is vulnerable to Cross-S ...)
NOT-FOR-US: WordPress plugin
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dbf22934a9a81a154ed4f3adf95cb1dacfde98e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dbf22934a9a81a154ed4f3adf95cb1dacfde98e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250722/6ad1c933/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list